{"report_id":"ddee3da2-e959-47da-b2a0-ecb9b4907668","version":6,"status":"done","tags":[],"date":"2025-12-21T11:02:29Z","url":{"schema":"http","addr":"typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"172.240.127.242","port":0,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"title":"SimplyFling","dom":{"size":14944,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (835)","md5":"44fcd34ae608144e05512806e6b015e3","sha1":"61857221fa2c512030c9dc898b89e5c62c8eaebf","sha256":"b7ece64612eeeee7d04917b9eb90c99a2862d1078399813a124eb1a4c866fabd","sha512":"5be3b77d23d1684b5c09fea04918822f2603594ec61417857148e4d99dfdfe36ed9b88869a2a98da2fca1fbc17170d10fc6e8c480882db764f1a51d79d425e72","ssdeep":"192:LPsB96i5inJoKiQpC6WCjqnR3GJ8DH/QF2Fkpl1kaiNnvg1VSa2psCWrQy4JazRO:LPsB9FKiQkwjuQ1Vvd2BmwMQ4Kooz","tlshash":"6762f96d94c2207f596361b96a6ebf5c3d72c2078446ce40b4ac8ba42fc0fe51977dca","dom_hash":"domhasha72ec95558559c7839598fc233793496","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"172.240.127.242","port":0,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-25T11:02:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"abr.auto-ads7.site","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"abr.auto-ads7.site","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"typicallyuncovernull.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.251.38.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-14T22:13:59.416786Z","alert_count":0,"request_count":1,"received_data":73798,"sent_data":540,"comment":"","tags":null,"fingerprints":null},{"fqdn":"protrafficinspector.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-06-18","domain_rank":614186,"first_seen":"2025-07-25T22:45:21.95813Z","last_seen":"2025-12-16T20:59:52.98779Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":464,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-14T22:17:06.291076Z","alert_count":0,"request_count":1,"received_data":3122,"sent_data":481,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"abr.auto-ads7.site","ip":{"addr":"52.17.88.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2025-11-14","domain_rank":0,"first_seen":"2025-12-17T12:22:21.630099Z","last_seen":"2025-12-17T12:22:21.630099Z","alert_count":2,"request_count":1,"received_data":15780,"sent_data":849,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"nature-land4.site","ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"domain_registered":"2025-12-02","domain_rank":0,"first_seen":"2025-12-17T12:22:21.62974Z","last_seen":"2025-12-17T12:22:21.62974Z","alert_count":0,"request_count":24,"received_data":793561,"sent_data":10160,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"typicallyuncovernull.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":3,"request_count":3,"received_data":23313,"sent_data":4035,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"fc8542ca1cf0dc316c2fa82c08cd1820","sha1":"f3c0df0e83d96698616efe69658c19fbc6b14f2a","sha256":"28900446dc4cc08357d316551119d97edbf01a237301313d4aa3e6ccbbf2c605","sha512":"b173f15837c2370e6d513b6338cbe9a290af61da8fdb9a628a9cd486b91d1888fe0a3937e1afda185b2c546d32bad2b391170e0a54118e35d4cca35212605123","ssdeep":"","tlshash":"91c002f4b240d531489c021c34bdc7c87cf076517483b15d914d0dbc1638ec66497f8a","size":134,"data":"","first_seen":"2025-09-26T18:30:50.96573Z","last_seen":"2026-01-03T12:23:29.605074Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/ab_front_guard.js?v=1","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"a835342295dea04969f2f619cdd9f44d","sha1":"565133315f0d2b42e97c9956f7f1cf1ad1d49f07","sha256":"0ba85634aa5abe26861ada415e016eb8701da2b40562be1fc7049d5c76f63fef","sha512":"02e6a914bccb54ace37971264096fcc3d4c762e88f8b8daf3eb33477c13b866f4cd304712feac0a6c4b36ad91e5850582d1d1af860a240f1edf4bbe095261771","ssdeep":"","tlshash":"3961333e75a0113ea663383d626f930831b751475856c860bdae87604fe4e161e6fdfc","size":3181,"data":"","first_seen":"2025-12-21T11:02:35.111454Z","last_seen":"2025-12-21T11:02:35.111454Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/scripts.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"a6c619e777f5ad0ddaa0ef632482a603","sha1":"544713203dbe87eade4827b48b1f218c0e543487","sha256":"e6b78c91a877bcb5165279837ee185dcfe61eb40586ef5aa3cc4466ea25de26c","sha512":"61b1426fa0c8b8d69d553453cd665eb8600e61b9074e2433e8985fe20c07b7857aa1ea00a1c4f5167ad47209d43f3ba95a8df92bc6f5b89407dcee6db320e410","ssdeep":"","tlshash":"c3d0a7487218a9b100bf72be8336c5c45c3e26e6c1856710f4de4a860f6005c3a73d9f","size":259,"data":"","first_seen":"2025-09-26T18:30:50.947344Z","last_seen":"2026-05-16T15:54:26.202247Z","times_seen":81,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/jquery.min.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"ff60aea44632d5a86b71e57863818da8","sha1":"3d6f6d96d9efc32830fd7412df0b6036ea8010f2","sha256":"b68485ecc11c395a9906957800dbcd72217edd5481113a57b4a9ee7233e1c036","sha512":"313ce9c74b095f964307072c167af6e38368d871c0bbcf8c3077764a78bf8256c78a0557a0333e95841b51b7397ecd8a2e4a7411b7b49bae5b281b98e6ac2f61","ssdeep":"1536:1NE13755B+Jo6iXRDtp63gHe4wTgjYvh4K3mgppUDY/47OiVXZUDDYP5Hna98Hrw:GbTO93mipBSIDO5Hna98Hrw","tlshash":"ced3b6c9b9d274929673b8ac8aab9009fc77445b74088f50b85cd5e03fb095950bbfec","size":130218,"data":"","first_seen":"2025-09-26T18:30:50.958304Z","last_seen":"2026-05-16T15:54:26.178175Z","times_seen":82,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"a3e1c43d6b66de4c8e5c7e705c3bd4eb","sha1":"c8adf63fdad922f1a2ec44f1323b2d50fcd9fdf7","sha256":"8ec63eafc24ee9dfb408afe4dcca06508c6024c0f624f5f10401fbb50f7827c9","sha512":"97da6a40b4fee0e398162ab19d36d235ddc3c27059e6d7003206cdee771240cabf1aa50e6875269af002f4d1b66d943269e5a93e9b7755e2f106ddcb19151031","ssdeep":"","tlshash":"ce41022c951772feed2663bd265e1ee429bd41471500ec13f41ca1490f40feba115be7","size":2436,"data":"","first_seen":"2025-12-17T12:22:28.294932Z","last_seen":"2026-05-16T15:54:26.237294Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"172.240.253.132","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3ecce895ac36d4e778fab681a6fd6be7","sha1":"95d10654b69c10c6c2e38100fc622ce883193480","sha256":"fb90f5ca73b46f79ae632a1f11697e397403ac62edaabd76dabebe6c389ee852","sha512":"866bf41444522b184c9276ff7c3ad674b6ae300ee218e6ebda3e68c19f142536295a5411c478dd3492bb016c1d91953ef284421125a83c8e6dbc08c65cecb447","ssdeep":"96:b2YfIuzVcmCmPIHIboIgpwZ6ZW8MnVeSa+Ac6AnZPAP4d:b2YfTzSjkc6ozwltn3a3cPWP4d","tlshash":"379161912430787945ba1917e16f731937334f17ba4274a0911c5aa83c39d8bb622fef","size":4475,"data":"","first_seen":"2025-12-21T11:02:35.129575Z","last_seen":"2025-12-21T11:02:35.129575Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"249c002aaf970ecb39eae920ed2650db","sha1":"5ad43219aff1ccee5ffeb69da98afdc749cea24a","sha256":"f3b03482a6137f1e5d1acfca0ac8622b5dd98ef925242524f407886ad7c640b0","sha512":"573fa68a5557ea31967adda3ba3f96d70a16a488d08e65510f2d208dca8d530c3dc6c8de39ed014295f9ea328ce7becb5e33d302c91bea2643aeb7009d77518d","ssdeep":"","tlshash":"0e71339c54c621be6197353fba9fb32479328563508bda00b96c9bb03fc0e7551b4ec9","size":3713,"data":"","first_seen":"2025-12-17T12:22:28.296237Z","last_seen":"2025-12-21T11:02:35.130458Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/ab_guard.js?v=10","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"870bd4413e4301080428715ddcf1dddd","sha1":"5fa10d396cfcf36f77352e38c2d52140665bccfd","sha256":"43d9d545b69f9b4b61a9523361860ad64c3888a61e6d57f1396d24b7a92102fa","sha512":"34c30c036c1c75a764091c6593df6a92da9901539b9f63d443e225fe267be63980b756b957f1c393595d1eb67d1882ac1e2e33495bc2abaa6986e3187ccd22aa","ssdeep":"","tlshash":"8651912ef1c3622c252648ba5227727c7a7d280367dbfa21744de64d4fc4ac587b4954","size":2476,"data":"","first_seen":"2025-12-17T12:22:28.284917Z","last_seen":"2025-12-21T11:02:35.116121Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/translates.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":false,"md5":"1097ed084d28f8759d495a5efe3c073c","sha1":"9ac4b753e2defe2247b42cc1f5d0d33a5aec824f","sha256":"38d59a11db37357921e42148662a540a39f2618f4cc3458bbfc782601ae14ec1","sha512":"47c5e1057b57722cebdd721609c0223042f192637cf9b49836a0b89c37501622c8e09d3ec0a28aaae0aeda4663a7b4ea80024436bca89af351715f483f3b00ac","ssdeep":"384:PiQdrExkJZG0VKwkcBMG87xe8Gn/d6REd+vyGMAeqGYFHC2e0j3m8Q8UdaB7j3ul:HEeZGikjnGl6cJGYqGOhe/J2fuwJejB","tlshash":"c9e2384570a923a4c470e317b1443422a65a8b2f7f5afed87b0991143f9da3f49fa1ce","size":32162,"data":"","first_seen":"2025-10-14T16:36:12.379895Z","last_seen":"2026-05-16T15:54:26.20527Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8eb38da98c984d4fa8d71b9d6365f981","sha1":"ba30bcc36f6486a0568fd87a4e82448fc3476f8f","sha256":"5eb82c4678e10b8f016b69509e32f368c12c718db971a565c00fc460498f5409","sha512":"2eff568d46f026f62390fe78aaac8b443133b99e058b698330460da25929afbc2212736491be87a6838373433eedec3e5bb0e67b450496fa8111d62e3ed26af9","ssdeep":"","tlshash":"926186aeea53643a6f772428177fb214753352230885cc817c6d96446f819450ebbecf","size":3201,"data":"","first_seen":"2025-12-21T11:02:35.131262Z","last_seen":"2025-12-21T11:02:35.131262Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"abr.auto-ads7.site/c/a56f3ff8a19cc417?SUB_ID_SHORT=5eda7705178701d1c04e8ff926b4fee4\u0026COST_CPC=0.002050\u0026PLACEMENT_ID=27893247\u0026CAMPAIGN_ID=1340316\u0026PUBLISHER_ID=1334652\u0026COUNTRY_CODE=NO\u0026USER_CITY=Oslo\u0026REMOTE_LANGUAGE_CODE=en\u0026BANNER_ID=3579418\u0026USER_OS=Windows\u0026USER_OS_VER=10.0\u0026USER_CARRIER=Blix%20Solutions\u0026DEVICE_BRAND=Unknown\u0026ZONE_ID=4919510","fqdn":"abr.auto-ads7.site","domain":"auto-ads7.site","tld":"site"},"ip":{"addr":"52.17.88.125","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T11:02:07.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"abr.auto-ads7.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 14 Nov 2025 07:32:21 GMT","end":"Thu, 12 Feb 2026 07:32:20 GMT"},"fingerprint":{"sha1":"9E:C4:C7:C4:A6:54:65:99:01:7D:84:BC:7F:2B:5A:D1:E6:E5:C1:06","sha256":"B2:80:39:98:42:81:9C:66:49:E5:2F:1C:3B:A7:D0:79:47:71:16:CA:A6:D4:AB:EE:71:BB:6F:FD:71:DA:8D:76"}}},"request":{"raw":"GET /c/a56f3ff8a19cc417?SUB_ID_SHORT=5eda7705178701d1c04e8ff926b4fee4\u0026COST_CPC=0.002050\u0026PLACEMENT_ID=27893247\u0026CAMPAIGN_ID=1340316\u0026PUBLISHER_ID=1334652\u0026COUNTRY_CODE=NO\u0026USER_CITY=Oslo\u0026REMOTE_LANGUAGE_CODE=en\u0026BANNER_ID=3579418\u0026USER_OS=Windows\u0026USER_OS_VER=10.0\u0026USER_CARRIER=Blix%20Solutions\u0026DEVICE_BRAND=Unknown\u0026ZONE_ID=4919510 HTTP/1.1\r\nHost: abr.auto-ads7.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://typicallyuncovernull.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 167\r\nlocation: https://nature-land4.site?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241\r\nset-cookie: unique_id=6947d3b0000520ea; Path=/; Expires=Thu, 19 Feb 2026 11:02:08 GMT; Secure; SameSite=None\nunique_id2=6947d3b000052ab5; Path=/; Expires=Sat, 21 Mar 2026 11:02:08 GMT; Secure; SameSite=None\nimpression=; Path=/; Expires=Sun, 21 Dec 2025 11:02:08 GMT; Secure; SameSite=None\nvid_self_hosted=iamlg6947d3b00003c8bc; Path=/; Expires=Thu, 19 Feb 2026 11:02:08 GMT; Secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15073,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":454,"timings":{"blocked":192,"dns":94,"connect":32,"send":0,"wait":69,"receive":0,"ssl":66},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"abr.auto-ads7.site","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"abr.auto-ads7.site","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light4.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light4.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 51265\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-c841\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":51265,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"768e563d81e39e70285d59f999638363","sha1":"1bcecda191488555890a2a4e914af34ea2579d91","sha256":"3b1487e46ed21fdae9bdfc8f5c6a369219b1a350ec9cb153b69e0d09c353ad11","sha512":"517f68c52fb1c1bb8fea7f0d4bb81aa3c1cdb87494496451e85da4cd7b779a35518863631dd92f70d365b0474f6abbd7301fce85e708e9865478e5d0d1925e35","ssdeep":"1536:SvtTjPn9INXSP9ThcmuIBTvSTG/7qaWJATa7oW:6TjPPVTZHBTqTO7Pta7oW","tlshash":"8133013c03154b99f13d2f34ab529e587616e5cb2b1b2e483dcb2704cdbedce8a15622","first_seen":"2025-10-14T16:36:12.356536Z","last_seen":"2026-05-16T15:54:26.230665Z","times_seen":79,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light6.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light6.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 46397\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-b53d\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46397,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"29208cd03c1e2db56ff5095e2312f0d6","sha1":"49e80455dabc9368c7ec9e313f934f92f640dea6","sha256":"56a5f5221bec1ef0e2f91fd205cbd154c2dfda585581a60b5b1a5a510805c7af","sha512":"b849c1bda77e3a1343d82dbb40762959c7c35a50915bae16e2c596bfcc2a0ba8c7321ac22150bfbc6fcfb8d6ae583d51fb9ab299dd78400dd87a3b0f24e026f9","ssdeep":"768:C5KgPrWC1mOuJNVr2ax3EH1lfwl3x4023AaGeDRAOlkP0iYvPjKh3:lAwXB2c3EH1lfKx4lAaGeDRdADK83","tlshash":"2623f12bcaae5b61c7ee63365286ab40cbe03b12d400851725005539deceb9cf9593eb","first_seen":"2025-12-17T12:22:28.291243Z","last_seen":"2026-05-16T15:54:26.162324Z","times_seen":41,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/css/overrides.css?v=2","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/css/overrides.css?v=2 HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 21 Dec 2025 09:54:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3be-47c\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1148,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"5b2574520785d259bfd7325d099ad4d5","sha1":"3722b0e6d982d6c7cf01957448b6461c4331329b","sha256":"2f5b1083766bace4990624d746c5feaef2550621397a37a319025b6e56f3bd1c","sha512":"c7726f8ee4667e0233199c7531e58873b0bff5f5f2d4f8512c5d929d495de06e96a41ea64132483da8c53f7fe559aa0ba547358e49ad43be4e2e68d0f0d13f3a","ssdeep":"","tlshash":"052138cbb1c0235c71266498546332ac7bfea404a3dc3f75474677ac97886f619714c6","first_seen":"2025-12-17T12:22:28.238507Z","last_seen":"2026-05-16T15:54:26.195901Z","times_seen":41,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default5.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default5.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 54265\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-d3f9\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":54265,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"d67318b1e939062e04a7c6a2bfb1e35e","sha1":"1beff741a3d7b25893626b3cd04a011216f67f86","sha256":"c590b87d660b47e595493f79e5bcb4d06787ebddc44d917e839837363ef49596","sha512":"89c787ee0cfe65f50e667420e95c24abcc1df59b3d775cd686edc023a15af119126e154829f3acf87ee727fe9e699f8745ae168652c2e2288e5a5d1e38e96ce5","ssdeep":"1536:ULD8df9ASBVxi24s4PGqCOazuBb+IRDoIN:ULYsSosAZC+xTRkw","tlshash":"8f3301009093d269f5edb97485e4cb8b7b8cc2b08e645605c1f8e75edb420cb64e7ed9","first_seen":"2025-12-17T12:22:28.257009Z","last_seen":"2026-05-16T15:54:26.145702Z","times_seen":41,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":127,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/css/reset.css","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/css/reset.css HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 21 Dec 2025 09:54:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3be-59b\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1435,"size_decoded":0,"mime_type":"text/css","magic":"CSV ASCII text","md5":"a0c10bcab0437bc0539cab97e8a00ec9","sha1":"381804c0ec398ebe7895391f65020d879214fd59","sha256":"88086dc5f0408e298d7fe3bf2e9cdac979c23be99d180810e23c384f24e0876d","sha512":"818a7ea45e2b6497a7523d52832e13c446fc8016d13cdfd7ed66394a28aa53cb8f827b885b92a955a461e57ebd37c777edf758285719ece957298ee99fedec0c","ssdeep":"","tlshash":"ee2162b41b70988d8131c8e9b65a6b18b36481375e49bcf88efa9c2dc748110b4d3a9e","first_seen":"2025-09-26T18:30:50.952433Z","last_seen":"2026-05-16T15:54:26.142282Z","times_seen":82,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default2.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default2.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 52265\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-cc29\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":52265,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"e3ac4b493a9e1b75bd21cb218f7046d5","sha1":"2bb53200837fbad8dd0ff35bdc26347be485ad12","sha256":"8b5dd8252a935cee4ff556d320348126427f0a5d38ed3d8c381367714645c822","sha512":"e70f6de049a5b5a5ab50943a1286fc2827e42692a46d51d5e0a73b2a30c625d05593b20c05793a560e481e2688301f5cdd986e38117cd246ba7d88ff77d1880b","ssdeep":"768:CoxkSnRP/lMHApvv6kvaMfxjO0ejoGP3PnVFE5iUrMj54BzmQa6766upkoflJvuu:RxNvYuaMglj1ny6szmqIpkoNFcKEg","tlshash":"6c33f1a0b7a3a629f913c6322135af315dec773e4468553a101fcfafc95618b3874c66","first_seen":"2025-10-14T16:36:12.372916Z","last_seen":"2026-05-16T15:54:26.200305Z","times_seen":79,"resource_available":false,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":75,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default6.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default6.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 53254\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-d006\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53254,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"699c80d14bdce19133dcc67626a56efe","sha1":"44ac4e4f84509169646ee2dcc8d471b0349eb103","sha256":"459177a6768c07d7632b52a0df27eaed17c31266097e1bb811541b2dbd890935","sha512":"e6607cb6a89e1228233084eacdfcb6a5822d08d2be4b2b2cc17000eab420659c9e3a63d75ed501cf98c0917d633340a95e40c19103df2e36ae52ff47113316fe","ssdeep":"1536:eI/W17L8Avk7t7xDKdzEjI47X4Na5M1DTT61xbP+Sz9:9oBvE15KdEjR74aa1fTCxqSz9","tlshash":"b233f1a0f946d684f654603fc1186907e67b50ad6c2cb939c0681777cf3aada0f7887e","first_seen":"2025-12-17T12:22:28.278803Z","last_seen":"2026-05-16T15:54:26.226645Z","times_seen":41,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":136,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/jquery.min.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/js/jquery.min.js HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3c0-1fcaa\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":130218,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (697), with CRLF line terminators","md5":"ff60aea44632d5a86b71e57863818da8","sha1":"3d6f6d96d9efc32830fd7412df0b6036ea8010f2","sha256":"b68485ecc11c395a9906957800dbcd72217edd5481113a57b4a9ee7233e1c036","sha512":"313ce9c74b095f964307072c167af6e38368d871c0bbcf8c3077764a78bf8256c78a0557a0333e95841b51b7397ecd8a2e4a7411b7b49bae5b281b98e6ac2f61","ssdeep":"1536:1NE13755B+Jo6iXRDtp63gHe4wTgjYvh4K3mgppUDY/47OiVXZUDDYP5Hna98Hrw:GbTO93mipBSIDO5Hna98Hrw","tlshash":"ced3b6c9b9d274929673b8ac8aab9009fc77445b74088f50b85cd5e03fb095950bbfec","first_seen":"2025-09-26T18:30:50.958304Z","last_seen":"2026-05-16T15:54:26.178175Z","times_seen":82,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/ab_front_guard.js?v=1","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/js/ab_front_guard.js?v=1 HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3c0-c6d\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3181,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text","md5":"a835342295dea04969f2f619cdd9f44d","sha1":"565133315f0d2b42e97c9956f7f1cf1ad1d49f07","sha256":"0ba85634aa5abe26861ada415e016eb8701da2b40562be1fc7049d5c76f63fef","sha512":"02e6a914bccb54ace37971264096fcc3d4c762e88f8b8daf3eb33477c13b866f4cd304712feac0a6c4b36ad91e5850582d1d1af860a240f1edf4bbe095261771","ssdeep":"","tlshash":"3961333e75a0113ea663383d626f930831b751475856c860bdae87604fe4e161e6fdfc","first_seen":"2025-12-21T11:02:35.111454Z","last_seen":"2025-12-21T11:02:35.111454Z","times_seen":1,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/shadow.png","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/shadow.png HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nature-land4.site/assets/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/png\r\ncontent-length: 1817\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-719\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1817,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 272 x 70, 8-bit colormap, non-interlaced","md5":"7154f593404df01c3ab354c91b964d3e","sha1":"c2e505051ec9b5034f073588e3af463049955a5a","sha256":"76dcfc94f104db8e33d7f641dc4f06c074245627b0f9d4929e4095f5eb5aaaa0","sha512":"397e22809fcc8601c8c3933394b6316ed10e90e94e9aac7b379fdc5e7209eaa82993a7df9bd5afcd7e6fd5d3e77ed3ec23c23f1d93736f66d2812db0a77c7f67","ssdeep":"","tlshash":"05310b8e93c70c9da3f55059100138738c6d66105e6ccc2d4faf49e7e9b0d7875809ae","first_seen":"2024-09-19T19:40:00.65734Z","last_seen":"2026-05-16T15:54:26.188185Z","times_seen":191,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":66,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/favicon.ico","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.676Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-length: 277\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":277,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"7fd5de8744d8360200fd07d22cfc077b","sha1":"941a21eb8a965c47b5776892ff812b73e4c55236","sha256":"a41bb3a38bdcfff4b8cb6e7869fc6391bcd2bc02d5d65cdb40d9e4b1ae9428e1","sha512":"848e9e78fa4f61c6e2b1a06512a6f179335294ef7c456c194d649d61729be6e7f5d46220d24646a1b4d70b26cfcfe8bdbce316c6c39af4f11cbb6470ef424f93","ssdeep":"","tlshash":"c3d02bae605362cb081215a03ac111c2274812fab43a86a86dc5e847625853dcc969e9","first_seen":"2025-12-17T12:22:28.269385Z","last_seen":"2026-01-28T02:27:19.990992Z","times_seen":18,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/translates.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/js/translates.js HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3c0-7ec4\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32452,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"1097ed084d28f8759d495a5efe3c073c","sha1":"9ac4b753e2defe2247b42cc1f5d0d33a5aec824f","sha256":"38d59a11db37357921e42148662a540a39f2618f4cc3458bbfc782601ae14ec1","sha512":"47c5e1057b57722cebdd721609c0223042f192637cf9b49836a0b89c37501622c8e09d3ec0a28aaae0aeda4663a7b4ea80024436bca89af351715f483f3b00ac","ssdeep":"384:PiQdrExkJZG0VKwkcBMG87xe8Gn/d6REd+vyGMAeqGYFHC2e0j3m8Q8UdaB7j3ul:HEeZGikjnGl6cJGYqGOhe/J2fuwJejB","tlshash":"c9e2384570a923a4c470e317b1443422a65a8b2f7f5afed87b0991143f9da3f49fa1ce","first_seen":"2025-10-14T16:36:12.379895Z","last_seen":"2026-05-16T15:54:26.20527Z","times_seen":79,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/ab_guard.js?v=10","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/js/ab_guard.js?v=10 HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3c0-9ac\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2476,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text","md5":"870bd4413e4301080428715ddcf1dddd","sha1":"5fa10d396cfcf36f77352e38c2d52140665bccfd","sha256":"43d9d545b69f9b4b61a9523361860ad64c3888a61e6d57f1396d24b7a92102fa","sha512":"34c30c036c1c75a764091c6593df6a92da9901539b9f63d443e225fe267be63980b756b957f1c393595d1eb67d1882ac1e2e33495bc2abaa6986e3187ccd22aa","ssdeep":"","tlshash":"8651912ef1c3622c252648ba5227727c7a7d280367dbfa21744de64d4fc4ac587b4954","first_seen":"2025-12-17T12:22:28.284917Z","last_seen":"2025-12-21T11:02:35.116121Z","times_seen":5,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light2.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light2.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 58718\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-e55e\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58718,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced","md5":"b4ec05e5832fa5fe53ef0eeb7165a848","sha1":"e3f2260c019434ebf75f950ac67d0222b17052ad","sha256":"d8f22b342c0f801874e22a0ef17c0dde0e7c2960cfbb4762e8907624ab211ee6","sha512":"8e0340d05cb3163a90c73afec1ca7d9f59d0054cc8bcb7581c6da0abbc3e490682a25842ecf6f2621a89a6409c805b334dfa7cad264e873f65c8ca4150251293","ssdeep":"1536:Hdb+7/x9bvbPvjJPcknufA3t/pJ7vZNL8rHe/i5CeQYVtou:Hg7/tPcknuf6tRjNAHceQq","tlshash":"f043026226555b3d4949c829720976d0218ab79436d2c1e21e32fe8df73b03fd17e3ba","first_seen":"2025-10-14T16:36:12.353426Z","last_seen":"2026-05-16T15:54:26.154582Z","times_seen":79,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light5.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light5.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 53509\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-d105\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53509,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"2d17dff12deee4b62e9879c0be3ffbfb","sha1":"d8bb4d410be086ea6c51c7e4cba9f68ad11ca742","sha256":"eb7c9222b2cb8b5ee036eb8c8e147472464042a596094fecb7e92b4d1c6e3db7","sha512":"17a6e800d7a59c7fce0d92cdbad6ff861994d9abaca8b4a83466c23625c636f8dc8f140421f244552f1584d8829a67a2cde518e69b5b668db0ff78c4b546f802","ssdeep":"768:CcelDxGnIA0JkyehaGALOvNfXgvr1QBKB8fbGViC5t+zJLtUdfVrntY6obYtRdZk:58onPNzAyFvtfBFzJLtCvzOaNgo6/","tlshash":"5333024691798a64d56852fd4295eaaa3c85db6088002cbdff033fe6d4077cb1edb1ac","first_seen":"2025-12-17T12:22:28.27495Z","last_seen":"2026-05-16T15:54:26.159385Z","times_seen":41,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"typicallyuncovernull.com/favicon.ico","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","date":"2025-12-21T11:02:07.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"typicallyuncovernull.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 07 Dec 2025 10:52:49 GMT","end":"Sat, 07 Mar 2026 10:52:48 GMT"},"fingerprint":{"sha1":"A4:BD:76:48:9A:4A:04:26:AA:80:7E:75:C0:EE:06:F4:67:D7:F3:CC","sha256":"58:B2:92:93:74:63:9D:C7:A9:73:2D:24:26:8B:7C:58:39:F6:82:2F:34:3B:82:DD:87:8B:71:AD:5C:5F:CA:2E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: typicallyuncovernull.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://typicallyuncovernull.com/api/users?token=L2V2YWN4eGd3P2tleT05Y2E2MDFhOWY0N2M3MzVkZjc2ZDVjYTQ2ZmEyNmE2NiZzdWJtZXRyaWM9Mjc4OTMyNDc\r\nCookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.5znJUUclIbrV2-AeTJa8LIfHVG9tUrQQn1dgb8POnkk; cjs=t\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"typicallyuncovernull.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"typicallyuncovernull.com/api/users?token=L2V2YWN4eGd3P2tleT1jODQ0NmM2YWNjOTE4NDBlZWU5YzkwZmE1OTJlNDBlZSZwc3Q9MTc2NjMxNDk4NyZybXRjPXQmc2h1PTE4MWFlOTU4MjZkMWRiODYzYjI0ZmFmNThiMWJkOWQ0ZTBhNmYxMzEyMzY4ODAzNmZjNjQ3OWU1ZWE4NDU0ODdiOWUxYzI4OTczNjE0MGUzN2U2Y2I1OGViNzU0NDRkZTQxNmQ2ZTJjZWYzMjQ3MTk0OWRiZTcwNmQwMWRkMWYyMGRiN2YzNDQ0MWY0ZDY5NmU3MjRjZDczYjUxYWU0OGVkMzVmMmQ1Mzc5NjgxZGZhYjM4Njk2JnBpaT0maW49JnV1aWQ9","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"172.240.253.132","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T11:02:07.258Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"typicallyuncovernull.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 07 Dec 2025 10:52:49 GMT","end":"Sat, 07 Mar 2026 10:52:48 GMT"},"fingerprint":{"sha1":"A4:BD:76:48:9A:4A:04:26:AA:80:7E:75:C0:EE:06:F4:67:D7:F3:CC","sha256":"58:B2:92:93:74:63:9D:C7:A9:73:2D:24:26:8B:7C:58:39:F6:82:2F:34:3B:82:DD:87:8B:71:AD:5C:5F:CA:2E"}}},"request":{"raw":"GET /api/users?token=L2V2YWN4eGd3P2tleT1jODQ0NmM2YWNjOTE4NDBlZWU5YzkwZmE1OTJlNDBlZSZwc3Q9MTc2NjMxNDk4NyZybXRjPXQmc2h1PTE4MWFlOTU4MjZkMWRiODYzYjI0ZmFmNThiMWJkOWQ0ZTBhNmYxMzEyMzY4ODAzNmZjNjQ3OWU1ZWE4NDU0ODdiOWUxYzI4OTczNjE0MGUzN2U2Y2I1OGViNzU0NDRkZTQxNmQ2ZTJjZWYzMjQ3MTk0OWRiZTcwNmQwMWRkMWYyMGRiN2YzNDQ0MWY0ZDY5NmU3MjRjZDczYjUxYWU0OGVkMzVmMmQ1Mzc5NjgxZGZhYjM4Njk2JnBpaT0maW49JnV1aWQ9 HTTP/1.1\r\nHost: typicallyuncovernull.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://typicallyuncovernull.com/api/users?token=L2V2YWN4eGd3P2tleT05Y2E2MDFhOWY0N2M3MzVkZjc2ZDVjYTQ2ZmEyNmE2NiZzdWJtZXRyaWM9Mjc4OTMyNDc\r\nCookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.5znJUUclIbrV2-AeTJa8LIfHVG9tUrQQn1dgb8POnkk; cjs=t\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.21.6\r\nDate: Sun, 21 Dec 2025 11:02:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 0\r\nConnection: keep-alive\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nlocation: https://abr.auto-ads7.site/c/a56f3ff8a19cc417?SUB_ID_SHORT=5eda7705178701d1c04e8ff926b4fee4\u0026COST_CPC=0.002050\u0026PLACEMENT_ID=27893247\u0026CAMPAIGN_ID=1340316\u0026PUBLISHER_ID=1334652\u0026COUNTRY_CODE=NO\u0026USER_CITY=Oslo\u0026REMOTE_LANGUAGE_CODE=en\u0026BANNER_ID=3579418\u0026USER_OS=Windows\u0026USER_OS_VER=10.0\u0026USER_CARRIER=Blix%20Solutions\u0026DEVICE_BRAND=Unknown\u0026ZONE_ID=4919510\r\nset-cookie: pdhtkv=true; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\nuncs=1; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\npdhtkv28=true; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\nuncs28=1; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\nu_pl27893247=1; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\niprc_c+a0fa2d21af4bbccdb2fd6b64d72ebb9e=1340316; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\niprc_c:1340316=1; expires=Mon, 22 Dec 2025 11:02:07 GMT; path=/; secure; SameSite=None\r\nx-envoy-upstream-service-time: 211\r\nHost: typicallyuncovernull.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: eaee679031c9d0c4ae0933066204477b\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15073,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":873,"timings":{"blocked":284,"dns":0,"connect":92,"send":0,"wait":305,"receive":0,"ssl":190},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"typicallyuncovernull.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/css/style.css","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/css/style.css HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 21 Dec 2025 09:54:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3be-24eb\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9451,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"95766510d204d2b10fc24cf2f5430535","sha1":"016cd343a3083a31eb73c5ee0984a116551772c9","sha256":"11701601f601fb53170d531f21e2ffa684e8df28e496c16921ab6f5a6165ec57","sha512":"eae77408dee912cf8b818823893addd6b8099a543d7b93b5a15b190c1dc820a03e630cd12113a6bf449fa79878eb74cee5dcaf7c8ddb300f298f592a0962c2de","ssdeep":"192:f3gZAoY0BEqSPHrzWMsAXX4DxfvDu6T7afYMQROgtC8HdNJ:f9oR2qSPHrYkIZvDkB4C8HdNJ","tlshash":"7212629a76e4230cb117d4b825533bbd377d4002928efe341bd6316ccf895e686a2749","first_seen":"2025-12-17T12:22:28.28025Z","last_seen":"2026-05-16T15:54:26.217572Z","times_seen":41,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/js/scripts.js","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.467Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/js/scripts.js HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6947c3c0-103\"\r\nexpires: Sun, 28 Dec 2025 11:02:08 GMT\r\ncache-control: max-age=604800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":259,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"a6c619e777f5ad0ddaa0ef632482a603","sha1":"544713203dbe87eade4827b48b1f218c0e543487","sha256":"e6b78c91a877bcb5165279837ee185dcfe61eb40586ef5aa3cc4466ea25de26c","sha512":"61b1426fa0c8b8d69d553453cd665eb8600e61b9074e2433e8985fe20c07b7857aa1ea00a1c4f5167ad47209d43f3ba95a8df92bc6f5b89407dcee6db320e410","ssdeep":"","tlshash":"c3d0a7487218a9b100bf72be8336c5c45c3e26e6c1856710f4de4a860f6005c3a73d9f","first_seen":"2025-09-26T18:30:50.947344Z","last_seen":"2026-05-16T15:54:26.202247Z","times_seen":81,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcCo3FwrK3iLTcviYwYZ90A2N58.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.251.38.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"5A:E3:E3:B6:18:F9:10:0B:5B:11:FA:CB:BF:0C:9B:5C:0E:34:70:78","sha256":"FC:46:B0:C1:1E:B2:21:60:D9:7E:6A:ED:42:56:B2:CF:2A:E4:D2:F1:1C:63:63:98:2B:A3:0F:6C:4A:98:74:D6"}}},"request":{"raw":"GET /s/inter/v20/UcCo3FwrK3iLTcviYwYZ90A2N58.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://nature-land4.site\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 72964\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 20 Dec 2025 10:38:50 GMT\r\nexpires: Sun, 20 Dec 2026 10:38:50 GMT\r\ncache-control: public, max-age=31536000\r\nage: 87798\r\nlast-modified: Tue, 09 Sep 2025 18:33:18 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":72964,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 72964, version 1.0","md5":"91247c94dcda6ff52b445d71d6bbfb81","sha1":"ad2f62363ed047b430b91f32afa31df51fcd7c5e","sha256":"6a3c3e024b31eeacbf1f19c3c7be78612d91c623186f64035a50038241dad4f9","sha512":"a12dcac84e9f9ae02df3aabe29d76994281cd1005edca471194605cfcd6a0456eec872fd28c63c72ae124804d0b47d8377048caae49c40b0a18b5d6be4d6213f","ssdeep":"768:zbw+rLBkMxbCkupj4Y69/Yr71+j9pWiKahMM6+AWEqXB0oGuNGku+QCcIKE205C7:zbw+iwuS/iZWeaO1zP1/9Esvf8fXnm1","tlshash":"8f6302244e3c50c2a54d33aa286940f6f6e79c75b2b79ba4a69c589cd410f329cdfdc4","first_seen":"2025-05-29T18:51:13.223047Z","last_seen":"2026-05-28T17:46:48.593109Z","times_seen":24606,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":46,"dns":0,"connect":8,"send":0,"wait":9,"receive":15,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light3.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light3.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 12651\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-316b\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12651,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 300x300, components 3","md5":"6850d1fa0b131c6fcda4cd369b3a8ad3","sha1":"a4db4f794c55c4a8a56219d36108ff25276bc2df","sha256":"8e9fe5241a3557f3a43b57010ef9234e04dbe35d2f3d2ed25ee9715c7abd8066","sha512":"dc6b607f312295d6176857f547570381a95c644b31da280e0de19945da8eafd4f7a75931c14fed4487ae7c3ed8ddb8d793ea9c68df012332ffc5fd81d7f86fab","ssdeep":"384:TwZMic4dgEu0YqQgZbWZhTKLyyIlrtiPVjC6iC3u:UZMT4vrYqsZhGL74p6iC+","tlshash":"c342ae2427090f14dbc34e7dc657ea10f4e38a60a967ca540f241b767aa4beb061a31b","first_seen":"2025-12-17T12:22:28.289947Z","last_seen":"2026-05-16T15:54:26.22934Z","times_seen":41,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"protrafficinspector.com/stats","fqdn":"protrafficinspector.com","domain":"protrafficinspector.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","date":"2025-12-21T11:02:07.209Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /stats HTTP/1.1\r\nHost: protrafficinspector.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://typicallyuncovernull.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://typicallyuncovernull.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-28T17:37:38.968108Z","times_seen":15830666,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":1,"connect":25,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default4.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default4.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 62454\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-f3f6\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":62454,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"59546193cec0a6760e7d8ca59a25f5bb","sha1":"2f0cf6c662648f7b740327e6246a1855fb2b6af9","sha256":"e60c3a07cda03c8f472dda6b648d1016e1812f885fb111240198cc552078c1dc","sha512":"eab372f78eeff0e29414675441150d9605fc72bf6175b5a1b545d51859fae5c73974e36fbe6433e3c9af962529ecec8029229eab817d642cc9fb6024267fd4e4","ssdeep":"1536:GFotu/ugr5Gu9rRKiOOv85oNXxAnDGi6yJlAV1nVeH:GFotrI39rIbORNB+DGi6eAV+H","tlshash":"6d530237b4039123d63b69b96d1773888b436e7043995dac8b8d99d6f5cb42fe42a600","first_seen":"2025-10-14T16:36:12.347086Z","last_seen":"2026-05-16T15:54:26.225336Z","times_seen":79,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":115,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/light1.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.678Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/light1.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 49170\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-c012\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49170,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"04a57f3179c71804ca31e20ba2202510","sha1":"f31eaa66a9c5630d916dc705868a8aefbb9944f2","sha256":"946c24c6f6670ec4d8c1f2c6e987e39081a08cf83794116f28303f12f3297e2c","sha512":"4c8ddf82e4ab9ae953e0405373991f15a081eeb89aa42bc9a42fcda11a7d385c9b48a1c8002644d1ff336b2319149ebc09cdacdd0117d20737a98e96a9b81803","ssdeep":"1536:IB9qgxekFn2Cy+z1+DSFUmozFQlGKf57FLh8:ICgAWn2TIMSaNxQlGy5pLG","tlshash":"1a230113c326d134c63727b56131ce04e6a9af23a8aa6d479d94d3dbe431cb464b82ca","first_seen":"2025-10-14T16:36:12.383041Z","last_seen":"2026-05-16T15:54:26.207449Z","times_seen":79,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T11:02:08.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241 HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://typicallyuncovernull.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/8.3.20\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\nx-xss-protection: 0\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15073,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (835)","md5":"9e103d7e44f22e7d34f3c90ec42f1439","sha1":"d276afc44ffcea57c108365e871b4f0dfc5c8a18","sha256":"a47e7e8e7638bb30acfddedd28638656646bbb0b8ab687a73c0a1243dac05a13","sha512":"894d4326f39d157d821b2128356c5aefb2fbc37e09adc6fd11bbb0e575e74935d7926601d63af9d7c1709c4be6ede4c6083a16eeb17a42c9a1cfc54925d77deb","ssdeep":"192:RPsW96i5inJoeiQZC6WCjqnR3GJ8DH/QF2Ckpl1kaiNnvg1VSa2psCWrQy4JazRq:RPsW9FeiQUwj9Q1Vvd2BmwMQ4Koo0M","tlshash":"2362e76d98c2603f556361796a6ebf6c3d7282074046de04b4ac8ba41fc0fd6497becb","first_seen":"2025-12-21T11:02:35.12445Z","last_seen":"2025-12-21T11:02:35.12445Z","times_seen":1,"resource_available":false,"data":null}},"time_used":476,"timings":{"blocked":184,"dns":68,"connect":37,"send":0,"wait":108,"receive":0,"ssl":78},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/flags.php?cc=NO","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /flags.php?cc=NO HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/svg+xml; charset=utf-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/8.3.20\r\ncache-control: public, max-age=31536000, immutable\r\nx-content-type-options: nosniff\r\nx-frame-options: DENY\r\nreferrer-policy: strict-origin-when-cross-origin\r\npermissions-policy: geolocation=(), microphone=(), camera=()\r\nx-xss-protection: 0\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":223,"size_decoded":0,"mime_type":"image/svg+xml; charset=utf-8","magic":"SVG Scalable Vector Graphics image","md5":"30bb159df63e9ec9d178a90e86f9eceb","sha1":"54c8514fe6c33406c5b248bc060365e915706803","sha256":"0d4b9a52f0a6bd264258baac791b39910a895bb6ca06f63477fa823a262febdc","sha512":"ea6eb5e0862819482453aa05147dc5acbea9e0573c0efdc53adc77a4e1017815999922a90d24bb2302effc2ad2f0490e287507ac75b499126cffc48012a97c2a","ssdeep":"","tlshash":"10d0c7598759a83c57138374ef68306800b7206922492194ac451130611a65b79b76ea","first_seen":"2023-11-28T22:38:32Z","last_seen":"2026-05-28T06:08:16.005541Z","times_seen":664,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"typicallyuncovernull.com/evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee","fqdn":"typicallyuncovernull.com","domain":"typicallyuncovernull.com","tld":"com"},"ip":{"addr":"172.240.253.132","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-21T11:02:06.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"typicallyuncovernull.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 07 Dec 2025 10:52:49 GMT","end":"Sat, 07 Mar 2026 10:52:48 GMT"},"fingerprint":{"sha1":"A4:BD:76:48:9A:4A:04:26:AA:80:7E:75:C0:EE:06:F4:67:D7:F3:CC","sha256":"58:B2:92:93:74:63:9D:C7:A9:73:2D:24:26:8B:7C:58:39:F6:82:2F:34:3B:82:DD:87:8B:71:AD:5C:5F:CA:2E"}}},"request":{"raw":"GET /evacxxgw?key=c8446c6acc91840eee9c90fa592e40ee HTTP/1.1\r\nHost: typicallyuncovernull.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sun, 21 Dec 2025 11:02:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 2224\r\nConnection: keep-alive\r\ncontent-encoding: gzip\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nvary: Accept-Encoding\r\nset-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.5znJUUclIbrV2-AeTJa8LIfHVG9tUrQQn1dgb8POnkk; expires=Sun, 21 Dec 2025 11:03:07 GMT; path=/; secure; SameSite=None\r\nx-envoy-upstream-service-time: 1\r\nHost: typicallyuncovernull.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 77cb954023210dee81091d39229ef482\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}],"data":{"size":4621,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (4620)","md5":"54c66cf62121bc5893688508710d06ce","sha1":"9d934196007f4d949bc1077e6faf3f6e508f3a04","sha256":"1fec871d493f5528b401d2a9287c81f2f6c380d349a83abbc8b2968d69e1e318","sha512":"3a973c1f9e676d85cf3a686d09f35ff271687a4e036e9fc5abd49e34864823ccd309268bf4b0ab0405b375300f9f1b2176f6130931c1761b49e3d8e8b9e0a85f","ssdeep":"96:z922YfIuzVcmCmPIHIboIgpwZ6ZW8MnVeSa+Ac6AnZPAP4m:Q2YfTzSjkc6ozwltn3a3cPWP4m","tlshash":"219162912430787945ba1917e5af73193b334f17ba4274a0911c5ab83c3decba622fde","first_seen":"2025-12-21T11:02:35.125992Z","last_seen":"2025-12-21T11:02:35.125992Z","times_seen":1,"resource_available":false,"data":null}},"time_used":673,"timings":{"blocked":282,"dns":0,"connect":91,"send":0,"wait":109,"receive":0,"ssl":190},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-21","alert":"Sinkholed","trigger":"typicallyuncovernull.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default3.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default3.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 50382\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-c4ce\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50382,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"11fb57b0175109f883c8b26af168476c","sha1":"1fd40f27fdf04daac785b85f95164a1ccbcfd687","sha256":"3a641bd1f8d6ca8a855068130e3117a531c2612b6729adef0018a974ef11ca91","sha512":"064430fb05581bc582b42a751e6145015b2c38d4bd86d448c727143beb8c7362770074a457e5d5f726324084f85eb2d4e3bb19d19603543787dba21b52aa1a58","ssdeep":"1536:0ihXl8Lq8+g45iQKsH3lBTj6j+wRgCFnEf5JS:JXWgg897H3l56jjRgCFnEf5JS","tlshash":"2533f16f3e71d0b4f3de7d75e93a5212319ee7b40a851ecb4139a932d6f2ad8640c284","first_seen":"2025-10-14T16:36:12.323364Z","last_seen":"2026-05-16T15:54:26.17211Z","times_seen":79,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nature-land4.site/assets/images/default1.jpg","fqdn":"nature-land4.site","domain":"nature-land4.site","tld":"site"},"ip":{"addr":"45.130.41.147","port":443,"asn":198610,"as":"Beget LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nature-land4.site","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 10:31:54 GMT","end":"Mon, 02 Mar 2026 10:31:53 GMT"},"fingerprint":{"sha1":"0C:0E:A6:24:0E:06:A5:D9:EA:6A:D4:7B:B5:7B:18:61:0A:18:27:27","sha256":"53:29:37:AF:FD:17:D1:A1:4D:15:3D:FD:5C:1E:2A:C0:2A:6A:B9:4B:A1:87:3E:99:A7:F5:14:8C:09:17:15:E0"}}},"request":{"raw":"GET /assets/images/default1.jpg HTTP/1.1\r\nHost: nature-land4.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx-reuseport/1.21.1\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 43411\r\nlast-modified: Sun, 21 Dec 2025 09:54:08 GMT\r\netag: \"6947c3c0-a993\"\r\nexpires: Tue, 20 Jan 2026 11:02:08 GMT\r\ncache-control: max-age=2592000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43411,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3","md5":"3934a01c59ee3539e7573ebdc5ec19e3","sha1":"706fd45befbd58cf2674e733eb525f206c054b2f","sha256":"a1d72f4e7bff2b80a7d6dcbcb4db6a708ee259e551f2a9ca067ea165dd937f3f","sha512":"7619d56ae0c7f1748a8f83c8fe053cc098d614b243f8d6c3db543fd51491f1ef3d01df39d064051e0f9b5494d653bfb49bfeabe8ea0f9324301b6485afbec60f","ssdeep":"768:CN/D3f9oMsgDz9D4ULj4isCYSooM2MnvvFheK2yR/a76C4RYcSqBkEm6p:0rf9nx14/gYFtvB2F7p43Bk9q","tlshash":"df13f197f22a5ba3ed1532397822034d13fa3a1470ea9e7865db0a41dc007ff5dd5998","first_seen":"2025-10-14T16:36:12.362583Z","last_seen":"2026-05-16T15:54:26.220809Z","times_seen":79,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:opsz,wght@14..32,100..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://nature-land4.site/?aref=https%3A%2F%2Fabr.auto-ads7.site%2Fsite%2Fredirectpage%3Fsid%3D297280%26hv%3Diamlg6947d3b00003c8bc%26hid%3D831241","date":"2025-12-21T11:02:08.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Inter:opsz,wght@14..32,100..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://nature-land4.site/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 21 Dec 2025 11:02:08 GMT\r\ndate: Sun, 21 Dec 2025 11:02:08 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2436,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"c9029b9be7fdbe03f05037ced4f6e0a9","sha1":"7db0cbaefa01daa5d610eb32b72d6465ca756b26","sha256":"cd4aee9022eea9f99866bb02f849a83354973786f0a4db6457ab1f4c3d38f8e6","sha512":"80cc884b7c66a1f585854f617a10cf591a0c0bd8b0eb5e9696b655b7b74d12df2ec06ff9bcd6c73a02febadff3432e347d43b17ccaabd141a5d1ebbe93ba7bff","ssdeep":"","tlshash":"3141ac91006be504af431cda23df7e325d8e15466082d67eaffe1cc55cead22432878d","first_seen":"2025-09-12T02:44:04.635127Z","last_seen":"2026-05-28T07:49:39.1006Z","times_seen":1580,"resource_available":false,"data":null}},"time_used":137,"timings":{"blocked":57,"dns":0,"connect":8,"send":0,"wait":23,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}