{"report_id":"d65de924-2e89-498a-b784-a058cf005bd6","version":6,"status":"done","tags":["suspicious","telegram_bot"],"date":"2026-04-06T13:42:38Z","url":{"schema":"https","addr":"schneidergroup.live/EU","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":0,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"final":{"url":{"schema":"https","addr":"schneidergroup.live/EU","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"title":"SCHNEIDER GROUP","dom":{"size":302210,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7321)","md5":"40bf2225c1e4606eae86b0d935b00ba1","sha1":"4030384cb235f246ea86b547beaec3a971399b08","sha256":"12a8fd886abfad51a0fb8410c16447e08308aa84037a3c331bfedfcd8984ab1a","sha512":"25980676d7420798c1fd1fb6b43d88766d757b497e3dd5063502fa8c49ffefcc16a1162e50be10673b4a32b10929b907ca40cc5b10652c75244dbfcbed95b545","ssdeep":"1536:jDmn6iO2R3HKZo1NttRarGarVtSASbNsnvlXlh3t3whpnsw+HjZRTk9PSGIEIEBt:3XiIZuYtBN1ohpnIfwEDEaEn","tlshash":"f754f173425835265133c7d520695b36e596ae6ffee30a003edcdbf72beac90a51b009","dom_hash":"domhash04aba8543adff4596c5dd23477845ead","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"schneidergroup.live/EU","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":0,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-11T13:42:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-04-06","alert":"Detects file containing Telegram Bot API","trigger":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-04-05T22:16:34.770209Z","alert_count":0,"request_count":9,"received_data":322851,"sent_data":4883,"comment":"","tags":null,"fingerprints":null},{"fqdn":"schneidergroup.live","ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-04-06T13:42:40.50697Z","last_seen":"2026-04-06T13:42:40.50697Z","alert_count":2,"request_count":26,"received_data":2710736,"sent_data":13762,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":3,"received_data":13772,"sent_data":1413,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-04-05T22:33:08.106483Z","alert_count":0,"request_count":3,"received_data":304294,"sent_data":1456,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ipapi.co","ip":{"addr":"104.26.8.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":7936,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2026-04-01T15:52:12.468501Z","alert_count":0,"request_count":1,"received_data":2506,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":[{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"md5":"5c63a9c9266dd015a275456f2aab83d4","sha1":"5471ce1deb9ab0d213942c2e36a0f0da0fe64c62","sha256":"f8214584ec5d2e21b31e0adb758dd397d0da4bc8b92c8b8f47201b9714fb789c","sha512":"71e382596896782e1629468a0767bd558190905b7d24c1bc3b52e7f5349e580129e4aafaea931afcdae28806434fe104ca26ccb68c106d6500297a75177ae026","size":206894,"token":"8491853544:AAGpVtyIehy3Y8fmkxmhElC9UDP50JLfLfY","is_revoked":false,"bot":{"token":"8491853544:AAGpVtyIehy3Y8fmkxmhElC9UDP50JLfLfY","user_id":"8491853544","username":"Botlidcb12_bot","first_name":"Бот nov","last_name":"","chat":{"chat_id":"-5044151289","title":"Шнайдер","type":"group","bot_is":"administrator","total_users":3,"active_members":null,"admins":[{"user_id":8491853544,"username":"Botlidcb12_bot","first_name":"Бот nov","last_name":"","is_bot":true},{"user_id":7969503077,"username":"K08Baer","first_name":"К08","last_name":"","is_bot":false}]},"pending_messages":0}}],"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"schneidergroup.live/EU","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"introduction_type":"scriptElement","is_inline":true,"md5":"245a1d6c744a299668aeea79d6695bdc","sha1":"5f57273db86c1e766f0452bcb544375438a6fad5","sha256":"4301beb726309cb875c36d3b8266a4039393e0e46fdee191c20af4701c622223","sha512":"b509b6e589e1af4f8e55fdd5f456caaf4fb4f8ac22ade3b13a0ee2920c834031fd00bcbb58de00a379278d67e280b83262d922c6b6a793b54cfa3a201423b9ed","ssdeep":"","tlshash":"43e0a33c64d549f841fbb279777c63707d3712117203c094705c83002a8bc188a6f6f2","size":435,"data":"","first_seen":"2026-04-02T15:07:53.221349Z","last_seen":"2026-04-06T13:42:46.236986Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js?_v=20240908200817","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"caf7bdf0ce3f11830af1d3dd0dbf931e","sha1":"958a4413837457b5e3b66ca292736de8286eafa8","sha256":"b0de6c6e01a16a20bab373a1e7f7b5f3ad48d1b85210965d8c956319f8ac329f","sha512":"7838f953bfa1c129087cd76d5f7a05bfb8dbf7e308861450a3b64331380dac48e7f0417b1e42d58f3ae7cbe0a50eea81bb3db2035d3150c9b7d731ebaca926f6","ssdeep":"768:c1D7GzOol+D45YMJR3kWG6UdCDxgtmKg3vTpzaDNCY5R:YfGkWodCFgtmKgNzaxCq","tlshash":"a7d2f9a973511637a89aa0a1687f16472ebf34015a84cc8cb87ecdcc1feced9a175734","size":29362,"data":"","first_seen":"2023-04-05T15:31:11Z","last_seen":"2026-04-07T05:45:48.49065Z","times_seen":10515,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/utils.js?_v=20240908200817","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e1abede2b1e12c67edde78e0bd9b067f","sha1":"84d63d9c364875e5b36affa7edfd0af2630bcb63","sha256":"bdcdee66eb73eaff67c185ce622c4f82d65cdc893b785259b0207e3e60c8ca9d","sha512":"04d675c77f51307f9463294e5b8d7d6de6863b4c2a75290eee98b5ad80d8728f4e2f7baf5da0bf193a80e4ee0254ada3e0af599280cd4921d590440a920c1d8b","ssdeep":"3072:u/dJ0y8AAYjLs3OwPl0n04XU343EhY2xZ+b+Ihnz15XC7sS8JtZ4mLETQCAtQ59v:adJChoYtxZ+b+IhJDKR","tlshash":"7134ceebda3c9736a1d97b35968eb3cd5a8cbc93c848567826c3b54f53788e0706c205","size":246621,"data":"","first_seen":"2023-03-07T01:27:34Z","last_seen":"2026-04-07T02:52:14.874685Z","times_seen":7162,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"introduction_type":"scriptElement","is_inline":false,"md5":"5c63a9c9266dd015a275456f2aab83d4","sha1":"5471ce1deb9ab0d213942c2e36a0f0da0fe64c62","sha256":"f8214584ec5d2e21b31e0adb758dd397d0da4bc8b92c8b8f47201b9714fb789c","sha512":"71e382596896782e1629468a0767bd558190905b7d24c1bc3b52e7f5349e580129e4aafaea931afcdae28806434fe104ca26ccb68c106d6500297a75177ae026","ssdeep":"1536:Qz190j9Qnr7t9PFYtjAr7MxwmX85tsAirGcVQPPqNoiVTsmz/QSMFtZ6RJvaY8Ut:G9PBExwmX85lPCqHUAf67t","tlshash":"bf14620891b3216241a3796e6f9b840532ba5103784bd9543e9c8f58efb993853fdff8","size":206894,"data":"","first_seen":"2026-04-02T15:07:53.214755Z","last_seen":"2026-04-06T13:42:46.17251Z","times_seen":2,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-04-06","alert":"Detects file containing Telegram Bot API","trigger":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48264\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:16:43 GMT\r\nexpires: Sun, 04 Apr 2027 02:16:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213932\r\nlast-modified: Tue, 09 Sep 2025 19:08:31 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48264,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48264, version 1.0","md5":"e401cae7a12911a5c9752dc7a62f9dd7","sha1":"5685dd613a8a8211bf60b4b10753a47587bd0b60","sha256":"b1bef1f03a77a36fc257c5525e32a1dd621bb6f935b743a419da7ed0b18dc8f5","sha512":"dc8b6f28bc048efb508b482199c958ffaeddf15431aad34544f5b9972fd8c19e0315f74499d5549b30e15a03e41bfaf2a30613b6889b9a693a9c87c4e872e1f3","ssdeep":"768:AWHBpvVWVHIgyYwXiDAOa6GWeFGaCfLBc/qiufIdQRuEl4ofxl8VKme:AWbEIgmi8uAFCfS/OfUYuRExl8VFe","tlshash":"1123f2e56c6a826bd88c882945ee21c1f3d7f4927713d149e8fa5df8c432c05ed5066b","first_seen":"2025-05-29T19:02:42.430777Z","last_seen":"2026-04-07T06:33:34.143125Z","times_seen":41557,"resource_available":false,"data":null}},"time_used":489,"timings":{"blocked":235,"dns":1,"connect":22,"send":0,"wait":8,"receive":3,"ssl":217},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/fonts/TTNorms-Medium.woff2","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/fonts/TTNorms-Medium.woff2 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 21640\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5488\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21640,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21640, version 1.0","md5":"1b8885fc6a15060dcf60fe26d95f9014","sha1":"f51d231dcb8800f916325fbf47d9c00e591cb568","sha256":"8a9ea70aeb0fc9199fef2fd2c6b568fd7d21eb11789d0b9dc67faa0aa173341e","sha512":"9776494b18678c15814ee21eba896afcee8d0854994da0adf7cbd2967a9bc6934ebb71b2901813632dfa32987829bb1e8d4a4683f3561e8d35264d1670a89ab6","ssdeep":"384:jmuh/po9DV1ixtZ2aGtENYNHOFV7FwX34oqsExQoB+kGgyei3Ln3StR4p70hmX:6MxoZ34vvN2uXFy34Zcg+k27GR4pcK","tlshash":"5ca2d00ad98f7a16c47302ed916fbbb9171f0e9b914ac6b328bcc37091d64759923847","first_seen":"2025-07-02T05:25:22.426876Z","last_seen":"2026-04-06T13:42:46.162906Z","times_seen":16,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/EU","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-06T13:42:14.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /EU HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: Mon, 06 Apr 2026 13:42:14 GMT\r\nset-cookie: e3b0c4_3=2c4q6m4rctnmv; expires=Tue, 07 Apr 2026 13:42:14 GMT; path=/; domain=schneidergroup.live; secure; httponly; samesite=none\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":139523,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7316)","md5":"fd0a5f96aac43e2b47eebd53726cdcfc","sha1":"c0f79b7a33fb04c2ce8b75fea3bb42dbc86f8e6c","sha256":"d940746d5e75ff1d9f74d53a69dbe94ecaecae0891b33f7c3f223b9cb6d59137","sha512":"5b93185171cada0759c7d208810d325bacecf67ced1aebd3f3dafa1bb70df9cf420528c35988cc6030764c22c08638f60e236e9a77552b20b189f737e8d5f36d","ssdeep":"1536:qlmnpDxLE3US3SlATtadZodZ6tSASbNlKvlXlp3t3hWeosw+YQGQqj0:kqDq33ktnN1hWeoIIg","tlshash":"8dd3b5f012f850b5f003bf95e5116d25bda37abfafd24140b1ed1d996fe2808ca2b45a","first_seen":"2026-04-06T13:42:46.167198Z","last_seen":"2026-04-06T13:42:46.167198Z","times_seen":1,"resource_available":true,"data":null}},"time_used":506,"timings":{"blocked":186,"dns":81,"connect":47,"send":0,"wait":131,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/5.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.675Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/5.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1154\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-482\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1154,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"d9aad969ce60523cd61dbf2314168d36","sha1":"9e734383753799d9caed89b2c1f8d95193cebeb4","sha256":"87211d8cc4cacd8d570cc26c8b5018783569dfd1a8f14fb265062947ecfae6b7","sha512":"b89c0830ed42c97988d3fad3cdc4c53cfc426f25ee6082190a6e1f3699d5317c3899990d6fa9681181edb4200a8136a3c35fe434d6c220e054893db5216f058e","ssdeep":"","tlshash":"b9210a6cd960c8e0be61e8a8e2388631e02d6a530d099b61c35920f2781e4c68af35cf","first_seen":"2025-07-02T05:25:22.425546Z","last_seen":"2026-04-06T13:42:46.169829Z","times_seen":16,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/reviews/1.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/reviews/1.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3700\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-e74\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3700,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 197x197, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"d51dfb2b6dadddcaa6a4efc67332a2a5","sha1":"7a35e87cb39b3ec20a0d09196eee946d9d5f1c70","sha256":"92aba61eae5637328864b7d96c5daeae959edfe958a11701cc7a2dfbb9084ea1","sha512":"1245da3ba78ce75b01f1884a72f1a04e50bcab6aeceedf72b4333ab89e5b60e1ea01777259609109e4514a92d2bb04967808ac8a2754147b3b0214cda03e6867","ssdeep":"","tlshash":"ad714e104c52db031140734aadf1bd44652f634ac058cbe52d395a54dddef68e598ed3","first_seen":"2025-07-02T05:25:22.421825Z","last_seen":"2026-04-06T13:42:46.171234Z","times_seen":16,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/js/app.js?_v=20240908200824 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: W/\"69d2f808-3282e\"\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206894,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (335)","md5":"5c63a9c9266dd015a275456f2aab83d4","sha1":"5471ce1deb9ab0d213942c2e36a0f0da0fe64c62","sha256":"f8214584ec5d2e21b31e0adb758dd397d0da4bc8b92c8b8f47201b9714fb789c","sha512":"71e382596896782e1629468a0767bd558190905b7d24c1bc3b52e7f5349e580129e4aafaea931afcdae28806434fe104ca26ccb68c106d6500297a75177ae026","ssdeep":"1536:Qz190j9Qnr7t9PFYtjAr7MxwmX85tsAirGcVQPPqNoiVTsmz/QSMFtZ6RJvaY8Ut:G9PBExwmX85lPCqHUAf67t","tlshash":"bf14620891b3216241a3796e6f9b840532ba5103784bd9543e9c8f58efb993853fdff8","first_seen":"2026-04-02T15:07:53.214755Z","last_seen":"2026-04-06T13:42:46.17251Z","times_seen":2,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-04-06","alert":"Detects file containing Telegram Bot API","trigger":"schneidergroup.live/lander/shnaider/js/app.js?_v=20240908200824","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/head-bg.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.639Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/head-bg.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 51558\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-c966\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51558,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"96be544aa73282240e073ce8b4e4a6ac","sha1":"678964dc646779a1a71c30920457acbc2317551f","sha256":"e5d9a48e09259a774b6a22a05f79546b4db8a51a412e45d26485b30889a08a31","sha512":"abc19d41ffc4d5898898b801dc10cc4742c9f5039cc2e48cbc242f1a5b5930e48902c203e5c5e7f8ca36f83e322e1a177435e3275dfbd05d4df288ec93c49ee6","ssdeep":"1536:QFw9YswB0ECALst8bHHBbu9wyeLTm8cXn/KZdhTqH2kN:T9DAOA88jBX6nSZdhTO","tlshash":"fd3302d3fc9d0b4f6941764c1a71cd937f82b386e22657ed27b018ac262242d9e437d4","first_seen":"2026-04-02T15:07:53.181614Z","last_seen":"2026-04-06T13:42:46.175241Z","times_seen":2,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/favicon.ico","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/favicon.ico HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 17085\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-42bd\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17085,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"4a18773b2ab8a7d94015f2889e4d38e2","sha1":"6c71d884ee369c11a8343c3a352a144db7a309a2","sha256":"51af22b71a6d26940f3c7d0744ba2e3cb94307df719ac84e3117fbc97a974d34","sha512":"8163d85e7dac75a5980b55ab42254d8d9df32525189c0d54385d3e533ebd492f5b904bdcae7224c18eb75115ca4c8040a9b6648e0018b0872ede79bfb7ca03bf","ssdeep":"384:m1KhIz74bwM36pNpBXtS/XpAtbRF/HACTSd:mchaY3kEpAd/Had","tlshash":"1a72d05606a9d60e7c36b48b325cd5bbc44b8cd211a50ec7f471de5e2e9470b6ea3340","first_seen":"2025-07-02T05:25:22.398966Z","last_seen":"2026-04-06T13:42:46.179223Z","times_seen":16,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Montserrat:700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css?family=Montserrat:700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 06 Apr 2026 13:42:14 GMT\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1976,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"7e117958684a56bdc004e5a736fbaf2d","sha1":"4eba16814797c3966bc65740eb9e7720e0c68688","sha256":"5c226a2d18b554efcf5048ae11ec54758f4e214f2dd02fa4b0962f9cb02b9870","sha512":"338597da56eaad9394ab8af097203e8dad11e0c944e6fe2e7ad5a97fc7d5523aeb1a3046dcd22992072811bd9fd5f85d4ae39c5183ec9ed612ee1f3069be9d57","ssdeep":"","tlshash":"3841cf81111bb500eb4b0cc623cf7e26dd4e656274a0c07aaffd2c98ade9c221735b6d","first_seen":"2025-09-05T01:56:40.684189Z","last_seen":"2026-04-06T21:28:45.74553Z","times_seen":363,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":95,"dns":1,"connect":21,"send":0,"wait":27,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.161Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48264\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:16:43 GMT\r\nexpires: Sun, 04 Apr 2027 02:16:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213932\r\nlast-modified: Tue, 09 Sep 2025 19:08:31 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48264,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48264, version 1.0","md5":"e401cae7a12911a5c9752dc7a62f9dd7","sha1":"5685dd613a8a8211bf60b4b10753a47587bd0b60","sha256":"b1bef1f03a77a36fc257c5525e32a1dd621bb6f935b743a419da7ed0b18dc8f5","sha512":"dc8b6f28bc048efb508b482199c958ffaeddf15431aad34544f5b9972fd8c19e0315f74499d5549b30e15a03e41bfaf2a30613b6889b9a693a9c87c4e872e1f3","ssdeep":"768:AWHBpvVWVHIgyYwXiDAOa6GWeFGaCfLBc/qiufIdQRuEl4ofxl8VKme:AWbEIgmi8uAFCfS/OfUYuRExl8VFe","tlshash":"1123f2e56c6a826bd88c882945ee21c1f3d7f4927713d149e8fa5df8c432c05ed5066b","first_seen":"2025-05-29T19:02:42.430777Z","last_seen":"2026-04-07T06:33:34.143125Z","times_seen":41557,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":110,"dns":3,"connect":7,"send":0,"wait":25,"receive":3,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48264\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:16:43 GMT\r\nexpires: Sun, 04 Apr 2027 02:16:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213932\r\nlast-modified: Tue, 09 Sep 2025 19:08:31 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48264,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48264, version 1.0","md5":"e401cae7a12911a5c9752dc7a62f9dd7","sha1":"5685dd613a8a8211bf60b4b10753a47587bd0b60","sha256":"b1bef1f03a77a36fc257c5525e32a1dd621bb6f935b743a419da7ed0b18dc8f5","sha512":"dc8b6f28bc048efb508b482199c958ffaeddf15431aad34544f5b9972fd8c19e0315f74499d5549b30e15a03e41bfaf2a30613b6889b9a693a9c87c4e872e1f3","ssdeep":"768:AWHBpvVWVHIgyYwXiDAOa6GWeFGaCfLBc/qiufIdQRuEl4ofxl8VKme:AWbEIgmi8uAFCfS/OfUYuRExl8VFe","tlshash":"1123f2e56c6a826bd88c882945ee21c1f3d7f4927713d149e8fa5df8c432c05ed5066b","first_seen":"2025-05-29T19:02:42.430777Z","last_seen":"2026-04-07T06:33:34.143125Z","times_seen":41557,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":86,"dns":7,"connect":9,"send":0,"wait":9,"receive":13,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/fonts/TTNorms-Bold.woff2","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.181Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/fonts/TTNorms-Bold.woff2 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 22080\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5640\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22080,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22080, version 1.0","md5":"35b29b9c139bacbdd286e8dc9370f59e","sha1":"c39bfddc93687e192d0fea17696f1dd9fe6647f1","sha256":"6a616797883ab2dc1f217d6cb398a0ef07e555ad651d23223b0b35e729f02b67","sha512":"81cac750e3bf25e009f0947853c392547aa296b3fdd61d5b32e86ea3443fa5427ddd67c1d2ae3511a1f32d7e1066473d02e12c991f9581e9230a650715ba5aa1","ssdeep":"384:0I/rmYVHWhiI+6+bgWu8zS/wiE+gmgL5kvUKdkYJwo6HjwMMp6x2iLsC:L/rvV2269R8O/aAK5F8DJwo6Hjw3C","tlshash":"5ba2d150dea37e9ed53d1d91f3326217718e49078eeeeb2263cca4d107104c6b47d9a5","first_seen":"2025-07-02T05:25:22.404451Z","last_seen":"2026-04-06T13:42:46.182802Z","times_seen":16,"resource_available":false,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/fonts/TTNorms-Light.woff2","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/fonts/TTNorms-Light.woff2 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 21864\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5568\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21864,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 21864, version 1.0","md5":"6d0454ad6a7f9622fbdac38aa6b976a1","sha1":"d6cd2b5fc92ebd5ffabd67869a8671a40ac3ddec","sha256":"16a1c679fd414c0484f9e2c8dfe63d2ca0556d17e5ebf9390737f46a2bface81","sha512":"cc1b3b06fa9a3699a5036309d03982d5099fc71c2d63153f3c4c0e26d17442ec7aa384b5a62128b26d02e9134678c31abf8a90990564fb9e54396419b4e54934","ssdeep":"384:m3HdFNvyjQcur58FoAFHqZNwt7vUCXwmdsE/UdP1bv3pU5k1QxN5rZG4w+gsO9dZ:m3H7ly8kFTFKZIamdsSsBv3p2FZiDsO5","tlshash":"3ea2e1212afb93ae56d40036dba0820cb5b31113c3615b0353a5c9e09f56f7cbeabd99","first_seen":"2025-07-02T05:25:22.418169Z","last_seen":"2026-04-06T13:42:46.184108Z","times_seen":16,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/preview.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/preview.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 24402\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5f52\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24402,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"98ca7a1a7c7e2daab7435a90383d4c58","sha1":"a79c5d08e574eb0668b5e9b47376b669e0cb672b","sha256":"1b101f8c8bef5f51e5588b2cf35d1bbc2b63d8fc493adc461ba5109e415a7f07","sha512":"b53580e9a7805c00e0a6b874ed25659d673ebde60067957e5513fb53b94be3f520819addfc1eec4e4dec301b83129c278038b918775e247cbae872809336777a","ssdeep":"384:SCqsQOnQLhY5m8U9JyBFcohoSlBGDvcx6HCUu3Trs4wH82xh8kz2dS6io2YjIWI:SCqqEJEmt1jCU+PsTTCk6TrjC","tlshash":"47b2f197be15d3d1f0e82002ddf1a90297b99a2f6e34d8169c2be15b238081720ffb5d","first_seen":"2025-07-02T05:25:22.416654Z","last_seen":"2026-04-06T13:42:46.185481Z","times_seen":16,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/support.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/support.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21992\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-55e8\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21992,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 570x540, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5b8aea10d32581d5cd1da953a2049c8d","sha1":"742c8594f8f95b094ad6e33a0c3909f17a084a39","sha256":"cd65dd9d59e25992cd6c3530101be709c52b1701aa7765ac2d80b99cf01ccc08","sha512":"233ddece2214fba64594ff43c0e37187b0ddac3aaad1ca159a58f06655be92b7565d693dfd21d55214692ab8b58e0a3844b98130bc78e76c2d8f4636a8cc05ef","ssdeep":"384:15pV9hFVDDe1tb2BLWS6HrTEfABWixBA/0uue/Du98hgYgl2Qm0iZ1JBd+cH4M9a:TpV95Q24HrT0ABtxBrJeE8Qe0iZ1pDHi","tlshash":"05a2d088346bfb22da7482f23686ed955c665f3bd2c0b516b70b6b0a051eedf1c0d910","first_seen":"2025-07-02T05:25:22.428174Z","last_seen":"2026-04-06T13:42:46.186766Z","times_seen":16,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js?_v=20240908200817","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/intl-tel-input/17.0.8/js/intlTelInput.min.js?_v=20240908200817 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 8889\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5f902e0e-72d9\"\r\nlast-modified: Wed, 21 Oct 2020 12:48:14 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 69695\r\nexpires: Sat, 27 Mar 2027 13:42:14 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c3sxOEik38WLQ3r2RKpZDblFMFgylm5bokkRq3YyuBoj%2B%2BmRWHSph0Bvv0rrhttsSZFDrkkrNaYD8tLppkrfsJUfoI1k92U70rnw7FUZxN8wtCCWYleRKDMEvcef3ao0m1Eqqquy\"}]}\r\ncf-ray: 9e8136f5b8fa76ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29401,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (26959)","md5":"caf7bdf0ce3f11830af1d3dd0dbf931e","sha1":"958a4413837457b5e3b66ca292736de8286eafa8","sha256":"b0de6c6e01a16a20bab373a1e7f7b5f3ad48d1b85210965d8c956319f8ac329f","sha512":"7838f953bfa1c129087cd76d5f7a05bfb8dbf7e308861450a3b64331380dac48e7f0417b1e42d58f3ae7cbe0a50eea81bb3db2035d3150c9b7d731ebaca926f6","ssdeep":"768:c1D7GzOol+D45YMJR3kWG6UdCDxgtmKg3vTpzaDNCY5R:YfGkWodCFgtmKgNzaxCq","tlshash":"a7d2f9a973511637a89aa0a1687f16472ebf34015a84cc8cb87ecdcc1feced9a175734","first_seen":"2023-04-05T15:31:11Z","last_seen":"2026-04-07T05:45:48.49065Z","times_seen":10515,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":5,"receive":1,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 25864\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:23:38 GMT\r\nexpires: Fri, 02 Apr 2027 08:23:38 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 19:02:55 GMT\r\ncontent-type: font/woff2\r\nage: 364717\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25864,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25864, version 1.0","md5":"7d930c3ad34795a762739aa13fca14c7","sha1":"e0e0ffa753785e486825363286d85286eca13dd4","sha256":"ac99ad1c437b60ef445a7c13c958d4d574ef98050de2ccf182ba6ccdb3bfbdfd","sha512":"32343b9e36101cb0b21a9f3eeb07f1ec190dc82ae9fdd092d4d305cd533308a0456126c34d0f76687f0483192ff10fcf6a9b2a10652eb22ea71918b86c3e23f8","ssdeep":"384:GIZmFjEbDcnw4TNhneUV5NUdgBtHET46ReIatMtrbkhZ4weW8FSET78gXOxRnBKz:XlXe5xfbUdg7eQIatqnKyCITAnBi88Zp","tlshash":"c0c2e1eaa6090f9b5a3c8271b71cb3a0ea57e11fb5b40e228d95d1fdb1d7115030e6b3","first_seen":"2025-09-12T04:50:20.840249Z","last_seen":"2026-04-07T06:33:34.144139Z","times_seen":738,"resource_available":false,"data":null}},"time_used":569,"timings":{"blocked":266,"dns":0,"connect":22,"send":0,"wait":26,"receive":1,"ssl":251},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/feedback-bg.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.642Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/feedback-bg.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2032\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-7f0\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2032,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"958955111d312a2fad66fe92000a6d4e","sha1":"341547a4892ad45c60d6926a81231ce9aed9824f","sha256":"7c299216b69dd2259850452e37254add7370d3d1a6e8399ea6ea8603746d9b10","sha512":"86aefc7e658609755fa5d5a74311d732eadfcae80a7db8452fc77fd8f73e7ac7306d3c60b168143b2874e11e3df3db39aff61aba4d5792bdfeb7210490bc3aed","ssdeep":"","tlshash":"dc41531739746e7ba00f1061dfae2a00d6d83b64d4b899a1c6b35220c96d556eb6ca28","first_seen":"2026-04-02T15:07:53.218494Z","last_seen":"2026-04-06T13:42:46.191483Z","times_seen":2,"resource_available":false,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/2.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/2.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1528\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5f8\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1528,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88e123466d65ad0a8780657e8458d4cf","sha1":"2ecc2e4dd67913d33c309194378f2db98b47354d","sha256":"019e8703e21642b05b210d617292adfa97494422256073f0a8d66912e961a481","sha512":"9963203faa7d07f1c4c7571ff97f3babaa4dda9d5c402eef6ea1ee558adb717bb4e033daa902b3fd793f44a6853ffc5f5d5f54698821f70b0057b6b79516cbfc","ssdeep":"","tlshash":"7a312a920330a28314ca9b9c68e6cb500516830abd9c39d493ebde73383804bea90d31","first_seen":"2025-07-02T05:25:22.402824Z","last_seen":"2026-04-06T13:42:46.194277Z","times_seen":16,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/cisco-decor.svg","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/cisco-decor.svg HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 205829\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-32405\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":205829,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"40b4bc280f9ca420cec11cb7e5f710da","sha1":"ef52038ee72c00d0c6fd063aded75627b55c60dc","sha256":"48c421700b4135e20b01b617e65834becfa80ba637d40cdbca832db0cfb8e27c","sha512":"4967290ad09ebfbe83c834775ce8e8de16c0c5559613190ecfd494302f2baf6fdcb23ee4b3b4808c3e9b59218b2e7ff3b1fc48bb0c2bf8f73d18bf45d87972f7","ssdeep":"3072:HeN/kromfk2UUcUhFgVvmxW8rQMmxUnp+oNZRO9lS/Xvl8XNuKuZpWrV6911IFa6:HeN/krO2Hca8O9cMqUBsc/flAj/4GclQ","tlshash":"dc1404764c1e6a5f73725c2ecb07283e7e9255eca20990cfa8cf70fdc2665149a64cb4","first_seen":"2025-07-02T05:25:22.426122Z","last_seen":"2026-04-06T13:42:46.199879Z","times_seen":16,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":49,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 25864\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:23:38 GMT\r\nexpires: Fri, 02 Apr 2027 08:23:38 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 19:02:55 GMT\r\ncontent-type: font/woff2\r\nage: 364717\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25864,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25864, version 1.0","md5":"7d930c3ad34795a762739aa13fca14c7","sha1":"e0e0ffa753785e486825363286d85286eca13dd4","sha256":"ac99ad1c437b60ef445a7c13c958d4d574ef98050de2ccf182ba6ccdb3bfbdfd","sha512":"32343b9e36101cb0b21a9f3eeb07f1ec190dc82ae9fdd092d4d305cd533308a0456126c34d0f76687f0483192ff10fcf6a9b2a10652eb22ea71918b86c3e23f8","ssdeep":"384:GIZmFjEbDcnw4TNhneUV5NUdgBtHET46ReIatMtrbkhZ4weW8FSET78gXOxRnBKz:XlXe5xfbUdg7eQIatqnKyCITAnBi88Zp","tlshash":"c0c2e1eaa6090f9b5a3c8271b71cb3a0ea57e11fb5b40e228d95d1fdb1d7115030e6b3","first_seen":"2025-09-12T04:50:20.840249Z","last_seen":"2026-04-07T06:33:34.144139Z","times_seen":738,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":115,"dns":0,"connect":21,"send":0,"wait":22,"receive":1,"ssl":97},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 25864\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:23:38 GMT\r\nexpires: Fri, 02 Apr 2027 08:23:38 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 19:02:55 GMT\r\ncontent-type: font/woff2\r\nage: 364717\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25864,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25864, version 1.0","md5":"7d930c3ad34795a762739aa13fca14c7","sha1":"e0e0ffa753785e486825363286d85286eca13dd4","sha256":"ac99ad1c437b60ef445a7c13c958d4d574ef98050de2ccf182ba6ccdb3bfbdfd","sha512":"32343b9e36101cb0b21a9f3eeb07f1ec190dc82ae9fdd092d4d305cd533308a0456126c34d0f76687f0483192ff10fcf6a9b2a10652eb22ea71918b86c3e23f8","ssdeep":"384:GIZmFjEbDcnw4TNhneUV5NUdgBtHET46ReIatMtrbkhZ4weW8FSET78gXOxRnBKz:XlXe5xfbUdg7eQIatqnKyCITAnBi88Zp","tlshash":"c0c2e1eaa6090f9b5a3c8271b71cb3a0ea57e11fb5b40e228d95d1fdb1d7115030e6b3","first_seen":"2025-09-12T04:50:20.840249Z","last_seen":"2026-04-07T06:33:34.144139Z","times_seen":738,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":91,"dns":0,"connect":25,"send":0,"wait":24,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/montserrat/v31/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 18824\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 15:59:37 GMT\r\nexpires: Sun, 04 Apr 2027 15:59:37 GMT\r\ncache-control: public, max-age=31536000\r\nage: 164558\r\nlast-modified: Thu, 04 Sep 2025 17:09:33 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18824,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 18824, version 1.0","md5":"1c0792ac34ef600f99d93bc272a31080","sha1":"ae5da15d6686e876f61d4b94af769f22e65c06d5","sha256":"f9d9e65b15372cebcafc3acd1e664a564c5c4b23278de4d5760de9a13c530371","sha512":"c07164aa922caa6a95da016802a6371d727edb560d91dd8069db4b5d88f8a90e89aa0e77d7174455953a19908523959a64d3a1c05c3e3f4f9675f73504f7963c","ssdeep":"384:Xr/E9GyFdjOVDIyf4sfiVMy7ebj70FLAubHpEDysFaCY9bt64wJY1:XbJybOVDNwspy7kYVrpjsFaVph","tlshash":"4e82e1f94816b1abce56c237833938497510eea48365725b17158c184ecc97f8ddfa43","first_seen":"2025-09-05T07:31:34.656521Z","last_seen":"2026-04-07T04:43:29.426255Z","times_seen":4741,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":75,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"104.26.8.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 15:59:25 GMT","end":"Sun, 17 May 2026 16:59:23 GMT"},"fingerprint":{"sha1":"37:8F:7A:B7:BF:60:24:8D:1C:83:4F:C2:59:C3:0A:0C:EE:B3:75:A5","sha256":"8D:E6:B5:3D:41:1D:D8:B2:FA:03:95:07:E2:54:7C:1F:A2:22:E9:05:05:5E:D2:99:7D:DF:46:3F:32:52:53:F9"}}},"request":{"raw":"GET /json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://schneidergroup.live/\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nallow: HEAD, GET, POST, OPTIONS, OPTIONS\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://schneidergroup.live\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.stripe.com https://*.paddle.com https://www.google.com https://www.gstatic.com https://maps.gstatic.com https://maps.googleapis.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://*.paddle.com https://fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: https://ipapi.co https://maps.gstatic.com https://maps.googleapis.com https://*.stripe.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://www.google.com https://*.stripe.com https://*.paddle.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/; connect-src 'self' https://ipapi.co/ https://*.paddle.com https://*.stripe.com https://maps.googleapis.com https://www.google.com/recaptcha/; object-src 'none'; frame-ancestors 'none'; base-uri 'self'; form-action 'self';\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nkn3kffjC0%2B9MC3xVu8OPCrzZFAwEPaHgcEFi9wQJ9RjLLJmtviEU8MNN%2FU%2BwG6uiCHhc0sN2v%2BMAYjjlcFYaMyC%2Fk2ro8ly3qtkbpjvJPcjjH9Fm5t2qEDA\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9e8136f9cfd356be-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":744,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"8215cbff3bb6e3f77b55f4f0f961749d","sha1":"d0c2a5a1be293236326a4c5a59b5172fba74d19b","sha256":"2bc635d44b5ca6c38b73aa6021eaccf71239109e9cb17b2c11d16d1fc1020308","sha512":"1d64ba84e769e0e5105bb0a51b90978a8bc52b3cbd30f03cddf95933de6ede8eec31b677a44c517a801ae7a293b479def7c6a4d933b936b8878eaa27dea76bb0","ssdeep":"","tlshash":"7f01df68e4680e7bacb9135cb42869071274220b5e56758e7bd09b8d0f8e9bf30b534e","first_seen":"2026-03-29T01:09:24.875702Z","last_seen":"2026-04-07T06:52:17.886771Z","times_seen":418,"resource_available":false,"data":null}},"time_used":351,"timings":{"blocked":49,"dns":4,"connect":1,"send":0,"wait":250,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/4.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/4.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 758\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-2f6\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":758,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e818ca5666fe22788745e10175f556e8","sha1":"1d05fd940dd6268350eec796319e8ad5d3fcf45c","sha256":"0f59246e4997a53f339d702c7568b20dade2a651e0e84e7f061763d317022eb4","sha512":"4149f2ded794e533dc23eefc5170fcf67b6fbeff19c65bdfafe2eaeb2aaa5ce05b8c1636ac981228369f75ce8e56a950d64130d871d4a2c24c5bd4111a239582","ssdeep":"","tlshash":"c00170b3da0c8ccfd62d2d2f2ae2d28480c95ac004946abde19136ec2da158d14b2a05","first_seen":"2025-07-02T05:25:22.400117Z","last_seen":"2026-04-06T13:42:46.205883Z","times_seen":16,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/js/utils.js?_v=20240908200817","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/intl-tel-input/17.0.8/js/utils.js?_v=20240908200817 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 45687\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5f902e0e-3c35d\"\r\nlast-modified: Wed, 21 Oct 2020 12:48:14 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 389128\r\nexpires: Sat, 27 Mar 2027 13:42:14 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P6ebWXn1QTb1PURZN7Iw7E9ZR6wmQx1IhUSine2BrzAS8JcIpQl8cp4TIWXMtUWyl%2Bh4C%2FZsvHlpM6r0dYzH0VbYbpMaBbO%2B75o0slDwLL04tA4AtQi7cX9tiW47II6KGqOlgCTo\"}]}\r\ncf-ray: 9e8136f5a8d876ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":246621,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1654)","md5":"e1abede2b1e12c67edde78e0bd9b067f","sha1":"84d63d9c364875e5b36affa7edfd0af2630bcb63","sha256":"bdcdee66eb73eaff67c185ce622c4f82d65cdc893b785259b0207e3e60c8ca9d","sha512":"04d675c77f51307f9463294e5b8d7d6de6863b4c2a75290eee98b5ad80d8728f4e2f7baf5da0bf193a80e4ee0254ada3e0af599280cd4921d590440a920c1d8b","ssdeep":"3072:u/dJ0y8AAYjLs3OwPl0n04XU343EhY2xZ+b+Ihnz15XC7sS8JtZ4mLETQCAtQ59v:adJChoYtxZ+b+IhJDKR","tlshash":"7134ceebda3c9736a1d97b35968eb3cd5a8cbc93c848567826c3b54f53788e0706c205","first_seen":"2023-03-07T01:27:34Z","last_seen":"2026-04-07T02:52:14.874685Z","times_seen":7162,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/video.mp4","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/video.mp4 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 139234177\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-84c8b81\"\r\nx-content-type-options: nosniff\r\ncontent-range: bytes 0-139234176/139234177\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1572864,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"09f91a4471546916c10b6423029e142d","sha1":"38f86d30238c6885057af035ef4a1f69d6aa942f","sha256":"be18ada33c47538c4423963e919ab3fcb22478e36a1c028fb040ca89be1fb0f2","sha512":"36148b51dd5351bdd61ef202e02f99ff79e9a4674fa536c78062e35e5c13ee0755e63d4e7ed78b8d5cd9fac94ce856d93e53aec2bd6b9770a2cb8557f567da58","ssdeep":"24576:IsQLrVKrGXtjkBKAP1l/0CuoX4PnP8oZuuqOj:zMVKGO3HMpoIPnP8DuqY","tlshash":"1a2523f908be9d51bfb22a8d5a4fd12fc4d1c044cb9dd2039819579ca1efa9842c37ad","first_seen":"2026-04-02T14:59:41.872469Z","last_seen":"2026-04-06T13:42:46.210845Z","times_seen":3,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/sliders-image/bg.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/sliders-image/bg.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: image/webp\r\ncontent-length: 3338\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-d0a\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3338,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f2afc963d838bab4939098a30ed33554","sha1":"3d4534144451743edbec913605c9af31594b8762","sha256":"7dfd9f514f67619f20150cade6c85b8772f929fc7e6efd32cbffb7df6fa223d9","sha512":"ba63be451cf6e1ed14403bded6f2cfe5fb751d6e202ae1b166ea77adeb769dc0492c372f1ad9c4acd29d6d2bec337ec6654d99ebd1e941c7d695b1affc8fdcf4","ssdeep":"","tlshash":"95614b3da25282371b46bb45cf3c43d426c4fb0c4d24fce25e81dea5e89c05b46303a2","first_seen":"2026-04-02T15:07:53.203456Z","last_seen":"2026-04-06T13:42:46.211709Z","times_seen":2,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/video.mp4","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/video.mp4 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=786432-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 138447745\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-84c8b81\"\r\nx-content-type-options: nosniff\r\ncontent-range: bytes 786432-139234176/139234177\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":196608,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"2786051a555bae7921d4d137ed19f4ea","sha1":"26bcde066d4b42724d954f23722bcfc4d9d1bea1","sha256":"f46a2dffbb27a1297acf690f95b750ccd4e3742ebe046a0ef4f1d4378019d3c8","sha512":"20b81f1fa870953f57734c1933ee6ee64e72123746b85c31fc21112b477cfd35d55f92e9d8c44306152022f503298675f6120a1efc863b2cc55adb1025f1dfac","ssdeep":"3072:nn9ozeTqgRv0SjXJ9ZegIJNaQvEmE8UvtGjWwfL2JAXWZkD8ZyekM1ylgA4rX:n9oz6PRsQZf+kQ1p9fL5WZy8MvMuH4X","tlshash":"c91413fa03ba9f92dad25d4c8a0ff037506289f85e5891858e6a65c475cf1340fc97cb","first_seen":"2026-04-06T13:42:46.21428Z","last_seen":"2026-04-06T13:42:46.21428Z","times_seen":1,"resource_available":false,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css?_v=20240908200817","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/intl-tel-input/17.0.8/css/intlTelInput.css?_v=20240908200817 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1970\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5f902e0e-62a6\"\r\nlast-modified: Wed, 21 Oct 2020 12:48:14 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 23716\r\nexpires: Sat, 27 Mar 2027 13:42:14 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iWW70Qjyh38yDydwimY8nui2iNLH4L7LYKmZg%2Fd4I2i%2FkfPER0dVpkAhv58iMtzDmVfK0L3tnikyqnIPSiUJah0hHc1hGRbOu0ccE8YnkWpOdK0Xgox2BtmMPeImYdXuTjzoKB3C\"}]}\r\ncf-ray: 9e8136f5a8d376ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25254,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a69aa970266649e0b08c2cb4bc166568","sha1":"d9314a52085a2bb6d284421bb18a4c546ecb73d4","sha256":"ad32b1248207ba91fb945a37d38e7c9deafcba849245872203482db42930d491","sha512":"8315a8c3c328eaaea92dad571ff09c1fc2728920c4b62c0957bf04f83f903f41156ac16cf30297ab5e86f022c3e022764a7a271ebe0b9bfc98d9f488dbe71b9b","ssdeep":"384:HzITF7FWhTmwAmDQTeIcQeIWi7mZlsaAaniXlvhdB:HqF7FWh/Hib","tlshash":"a4b236678bb32945b92bf2a1196406a237375c0bf81a4f2d63d639bddf490e014f37a1","first_seen":"2023-04-05T15:31:11Z","last_seen":"2026-04-07T05:57:44.993584Z","times_seen":27466,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":1,"dns":1,"connect":1,"send":0,"wait":6,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/6.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/6.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1382\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-566\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1382,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"da05853a0f1072f71110267717b1722f","sha1":"7dd024e4dced0e1bde1eb2178f280598a3d030fc","sha256":"0dc3ed0fb2fe401e6dafc897f349b2cffe33cfe02700e974d7db33d3b7beef83","sha512":"1fa1dd8a3add40dc9dbc455c14216c68e2bea644ee3be7aafdb12f939ede8aa0c639912a2152b8a57e113982263aa0f22eadf072bcdc7f3f47d6d9d4f86736e2","ssdeep":"","tlshash":"8821b660623588bb61156e21f3eb45dc18527c7468312ea386606efd238f9e559e0c8e","first_seen":"2025-07-02T05:25:22.421117Z","last_seen":"2026-04-06T13:42:46.217326Z","times_seen":16,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Poppins:300,regular\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.833Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css?family=Poppins:300,regular\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 06 Apr 2026 13:42:15 GMT\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2390,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"be46db6a6cc299e056af11ee6fd27719","sha1":"e0d3c2d05f41640b8e0e3821e02e07ebbc601026","sha256":"c8a496048b5755074dac48d12c295e8bc55c39e6101549fbd22c4281201164a0","sha512":"944746656e570d53bfdc9dc1c246103626d17443886405574d3635e1dbb6ef98ad2696f72d2859a6aef93f1d44f4296f31d102dec2e42fdaded9fc44a681b5e1","ssdeep":"","tlshash":"1d419bd1087bd1149b831cc123ce7d37ee1e9255b810e5b86bfd0c98adabc654362b2d","first_seen":"2025-09-20T06:58:11.972547Z","last_seen":"2026-04-06T13:42:46.218459Z","times_seen":152,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":157,"dns":0,"connect":22,"send":0,"wait":17,"receive":0,"ssl":134},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/fonts/TTNorms-Regular.woff2","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/fonts/TTNorms-Regular.woff2 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 22116\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5664\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22116,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 22116, version 1.0","md5":"6e0678da3a7e70271ed6518eaa952ae2","sha1":"b898b6c9d8cd57aa48fcea5eebb81313e4fae2a6","sha256":"71433db6e864e04517eac2d7e7ab8cc9c2eb5cd81ede419c3811671f9abeec71","sha512":"96500e14f203d92cc8e3f74ba6eadd5239ea2a840e4333c6495c899e696b23b9efc66e2f77ce98964de24d250988fb7b9765b53db7545de1448d10f3fa86ad08","ssdeep":"384:6t7tCMFmo172b2FhQGbn8ZzbjNlC7FrcJ2xOXaDU492BaHXEH7DM4:6thC6moR2KnQ68ZxcKJmACfivM4","tlshash":"e9a2d0d18060900ef2288454cc982b6d567a0afbdb0faf7dede29ccdb3141d7460b5d9","first_seen":"2025-07-02T05:25:22.410664Z","last_seen":"2026-04-06T13:42:46.219478Z","times_seen":16,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48264\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 04 Apr 2026 02:16:43 GMT\r\nexpires: Sun, 04 Apr 2027 02:16:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213932\r\nlast-modified: Tue, 09 Sep 2025 19:08:31 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48264,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48264, version 1.0","md5":"e401cae7a12911a5c9752dc7a62f9dd7","sha1":"5685dd613a8a8211bf60b4b10753a47587bd0b60","sha256":"b1bef1f03a77a36fc257c5525e32a1dd621bb6f935b743a419da7ed0b18dc8f5","sha512":"dc8b6f28bc048efb508b482199c958ffaeddf15431aad34544f5b9972fd8c19e0315f74499d5549b30e15a03e41bfaf2a30613b6889b9a693a9c87c4e872e1f3","ssdeep":"768:AWHBpvVWVHIgyYwXiDAOa6GWeFGaCfLBc/qiufIdQRuEl4ofxl8VKme:AWbEIgmi8uAFCfS/OfUYuRExl8VFe","tlshash":"1123f2e56c6a826bd88c882945ee21c1f3d7f4927713d149e8fa5df8c432c05ed5066b","first_seen":"2025-05-29T19:02:42.430777Z","last_seen":"2026-04-07T06:33:34.143125Z","times_seen":41557,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":29,"dns":0,"connect":0,"send":0,"wait":22,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:40 GMT","end":"Mon, 08 Jun 2026 08:38:39 GMT"},"fingerprint":{"sha1":"93:71:51:4C:A3:35:66:7B:96:98:73:5F:8A:D5:61:38:29:33:E3:58","sha256":"A7:C2:55:50:7A:01:61:98:C7:16:8F:8D:72:97:DD:77:B2:9D:D8:18:29:80:41:DE:61:95:42:E5:0F:79:FE:EF"}}},"request":{"raw":"GET /s/raleway/v37/1Ptug8zYS_SKggPNyCkIT5lu.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://schneidergroup.live\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 25864\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 02 Apr 2026 08:23:38 GMT\r\nexpires: Fri, 02 Apr 2027 08:23:38 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 09 Sep 2025 19:02:55 GMT\r\ncontent-type: font/woff2\r\nage: 364717\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25864,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 25864, version 1.0","md5":"7d930c3ad34795a762739aa13fca14c7","sha1":"e0e0ffa753785e486825363286d85286eca13dd4","sha256":"ac99ad1c437b60ef445a7c13c958d4d574ef98050de2ccf182ba6ccdb3bfbdfd","sha512":"32343b9e36101cb0b21a9f3eeb07f1ec190dc82ae9fdd092d4d305cd533308a0456126c34d0f76687f0483192ff10fcf6a9b2a10652eb22ea71918b86c3e23f8","ssdeep":"384:GIZmFjEbDcnw4TNhneUV5NUdgBtHET46ReIatMtrbkhZ4weW8FSET78gXOxRnBKz:XlXe5xfbUdg7eQIatqnKyCITAnBi88Zp","tlshash":"c0c2e1eaa6090f9b5a3c8271b71cb3a0ea57e11fb5b40e228d95d1fdb1d7115030e6b3","first_seen":"2025-09-12T04:50:20.840249Z","last_seen":"2026-04-07T06:33:34.144139Z","times_seen":738,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":28,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/video.mp4","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:15.710Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/video.mp4 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=139132928-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:15 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 101249\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-84c8b81\"\r\nx-content-type-options: nosniff\r\ncontent-range: bytes 139132928-139234176/139234177\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":101249,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"45b79c5becd12744e3741fb0f93ce4ae","sha1":"417c0131cbc01b467ef4cfb59774a6b93776cc66","sha256":"f70ca2d7c61c662dd961aa307f217a0a60fb31c4075c7181b27d82f4d45d2476","sha512":"2494e3d4321b9587ac3f681b9a7a8fd9bbe8dc04405d645972a2fae22f8754bed269c911d1db027114a0e8b89b5a8e28c5d3a9a67071fbbaf9cced01242ec811","ssdeep":"768:HlLy+4ZiFcvJRXp0WZiWYrmEgT+BW3+nIR3u/rcKpPOhZKWB55XmEd4sMW0U4T35:FL2uE/TaW0I4ge2hV5dyVogyxojbf","tlshash":"d3a3a0a8f728400bea62573584d117607b34e5b03753434f43e9a33eec6b3a99e571ea","first_seen":"2025-07-02T05:25:22.408097Z","last_seen":"2026-04-06T13:42:46.220116Z","times_seen":4,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":60,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/3.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/3.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 422\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-1a6\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":422,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"07ddda2831cb3ac92df59f182be01d58","sha1":"d8828d96e53abac0bdcd87046a5d463517ae43a8","sha256":"106c0a773c05901c55004d446331129569b58083fc765c193ea6701cbb7dfda1","sha512":"1d865c32f683857c1a9c4e8982f72671b247970bf720cbb06d7c37300db867675ca9e9db556d43c85a34aaf31a4a4f112ae866d6e7837a71506885e2c9e3dba5","ssdeep":"","tlshash":"eae0ab28483fe5d5c06a7c30656bb60862a600ef285aaff55259b4e8061001956b14a9","first_seen":"2025-07-02T05:25:22.41433Z","last_seen":"2026-04-06T13:42:46.223645Z","times_seen":16,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/reviews/2.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/reviews/2.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 4942\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-134e\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4942,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 197x197, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"74f313a6b28c95b99a58bd3b4de17c05","sha1":"844341759b6f76bdd40c5059dd2675557093074b","sha256":"2037da1782a7b1e287fdf14fdf978a7206beb9081526d74584a4669bbba09207","sha512":"11b99402601e996c27227388f4141714e7da382068cc4840dc79617fdf8f67528d7ed59ce07c8173d5e87e696720e33274d6479b9918db53d57a8fcb5d12b3a1","ssdeep":"96:OORKI0uCTk7Hrb7+yFm8SsVpUvJ9/etdrgQgs8kPd6JBXM2Dbgtbjb:dJEkrU8TVWRJ+xgQzd16fXXb4b","tlshash":"aea17d1130b4a5366d77798db05028945ccd7fb2b366bb9a94727431ca2aad2e00137d","first_seen":"2025-07-02T05:25:22.401248Z","last_seen":"2026-04-06T13:42:46.224838Z","times_seen":16,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/css/style.min.css?_v=20240908200817","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/css/style.min.css?_v=20240908200817 HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: W/\"69d2f808-cb84\"\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":52100,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (52100), with no line terminators","md5":"26807371cb926ac8f0597b22abdc2ef2","sha1":"6a426024aa28a7637bdcd9019b27ba2676b6d3c1","sha256":"2227bda52faf614689cd853d8bbce1865500d60bb42e4546d52bf2a03cdc44b2","sha512":"c447aca09668a0eed63dc1c9c68cecf03e57bae68b4ae6fd93699bb8f78cba91b6514e765a82f0492ab173d9027867d139040ca8ca7db5610f7a9bea1e387d11","ssdeep":"1536:tZDMwgguaieGTRZBeBfBqQ1dY13bCu1oBOBfBh:tZDMwgguaieGTRZc1cQ1dY1eu1oI1j","tlshash":"f033a72e67243058f2af8912b4d2f9e850659806f0568dfed4537e8ac9cb1f342627df","first_seen":"2026-04-02T15:07:53.19796Z","last_seen":"2026-04-06T13:42:46.227073Z","times_seen":2,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/partners/1.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/partners/1.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1510\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-5e6\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1510,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"5ab7653c4628dbf573f2f490ddc235be","sha1":"2866d82c69e875c4f689de577a2f234d38404733","sha256":"ee88ca85f2acff7575e0f5d349993fd308d8dd75188c8d7189d08a454b83f73b","sha512":"f03855bf00bc280669c1bd456fca6e035943a8f5fe83f7872e2adbb4408dafbec65c4f19a5f11ad9d6f7e742ac0871667a0070483c3a13e80bd74c5ecb26d13c","ssdeep":"","tlshash":"08314c3cfab2d3d9ca0213303f7e0dac98c29c5457520923f288786a38d2c0b893803c","first_seen":"2025-07-02T05:25:22.424803Z","last_seen":"2026-04-06T13:42:46.231381Z","times_seen":16,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"schneidergroup.live/lander/shnaider/img/reviews/3.webp","fqdn":"schneidergroup.live","domain":"schneidergroup.live","tld":"live"},"ip":{"addr":"91.247.36.170","port":443,"asn":59729,"as":"Green Floid LLC","country":"Bulgaria","country_code":"BG"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.685Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"schneidergroup.live","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Apr 2026 11:55:12 GMT","end":"Sat, 04 Jul 2026 11:55:11 GMT"},"fingerprint":{"sha1":"37:9C:12:52:E8:25:AB:6E:39:19:E0:DB:CA:EE:ED:A9:C7:9D:32:9D","sha256":"D7:69:DE:AF:E1:0E:37:8B:3B:51:8D:E9:FE:F9:7D:12:10:A3:EB:AA:89:53:F0:16:B2:B8:8D:89:9C:E8:3C:C2"}}},"request":{"raw":"GET /lander/shnaider/img/reviews/3.webp HTTP/1.1\r\nHost: schneidergroup.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/EU\r\nCookie: e3b0c4_3=2c4q6m4rctnmv\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5104\r\nlast-modified: Mon, 06 Apr 2026 00:02:16 GMT\r\netag: \"69d2f808-13f0\"\r\nx-content-type-options: nosniff\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5104,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 197x197, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5622e21c4d746ccf7255c4111f852a85","sha1":"071ffed53d19610474106c2bfa470ca54be13cd4","sha256":"5ebf374346cb7208cf113ce5400d2006a2282cc090f9ce337fba5da23ab219f2","sha512":"6ce894cdf7317a9a1a000ffb9dcb4aa047d03713145960ab319405c9edfadf093afaf7479ac8211a3cf77041744b9f4fe64c8aa3ebb47551ed5c5012b69bd35d","ssdeep":"96:b2fRyq2F1KUD6gHV7UW1rmnigdKnh7h2Y4srohVcER79VDxkvx4L:rV/j6g17UW1rRAKh70thn/lWSL","tlshash":"ecb18eba1b4a4c05fb88d7754e563ed95e8f4601c29880d9c55452e0d17ebf8ce533f0","first_seen":"2025-07-02T05:25:22.415496Z","last_seen":"2026-04-06T13:42:46.232124Z","times_seen":16,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Raleway:regular,500,600,700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://schneidergroup.live/EU","date":"2026-04-06T13:42:14.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:41 GMT","end":"Mon, 08 Jun 2026 08:38:40 GMT"},"fingerprint":{"sha1":"03:81:A0:0E:E1:9B:80:A3:BC:CD:F9:25:A5:7B:8A:43:07:22:C6:00","sha256":"73:8D:9A:B1:F0:C3:6E:8F:EE:C0:2F:99:C8:89:24:16:9A:DB:D1:9C:27:5D:8A:7A:A8:2B:0E:10:42:28:53:7F"}}},"request":{"raw":"GET /css?family=Raleway:regular,500,600,700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://schneidergroup.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 06 Apr 2026 13:42:14 GMT\r\ndate: Mon, 06 Apr 2026 13:42:14 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7348,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"53921b7294de9daf091d03a31467d867","sha1":"80371b55192ad9c7938dc7c3c01564f45d9c9f8e","sha256":"2f02b1d47879100c67ea7996220acd1e5a3f7975bbb21a80116bc319e1b67ba6","sha512":"79ea74d6d4d2769129ea60de2cb7a857ec73f90cf1c9a0722b7fe4cce70da4e8a1288af9174a6b68a5b1e0a4cd7e02f36a884dcc2ccd08c24b85d2b41089dbe2","ssdeep":"192:4ioTRH+DO9ivTiH9DN0iST/H0DEbiBT4HbDrp:lStobcFwf+Jm1","tlshash":"b9e198a00917d000eb47adc663ce7f36ee5e62053046953e9bfd58f8acaad361394b0d","first_seen":"2025-09-11T04:18:06.52964Z","last_seen":"2026-04-07T06:33:34.151179Z","times_seen":174,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":93,"dns":0,"connect":7,"send":0,"wait":19,"receive":0,"ssl":84},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}