{"report_id":"de903690-faac-4837-80f3-699bf1cb5461","version":6,"status":"done","tags":[],"date":"2026-03-14T17:31:35Z","url":{"schema":"http","addr":"lisskins.click","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"title":"Lis Skins — продажа и покупка скинов CS2, Dota 2, Rust с мгновенными выплатами","dom":{"size":36959,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832)","md5":"e5c571eada01244268643e24eb4bbd4b","sha1":"60ea050875440d3ce9e35d835974045e0d7fd521","sha256":"10acb12641bd53c3b70805d063f93aff8c25ea1dd0ce1ba9798550eb876c00cf","sha512":"91aeea691ea8f6050b2bff2b5798ef5cd6c668eaf2c4add6bd657f5ce1bedfc46ee35851fb6a6645b252804712620c09b860147bc2ae6c57cd9259a67d82a41f","ssdeep":"384:fEE0VHe2o2/yr/ZdSZUaAskWQssUMUxqOzWCpbUEBkg8gZ2TjlcVuLE0sl9SQ:fIVBopZdypJPqOz5BB8nlIuo0sCQ","tlshash":"56f2b53192e8047b260b92eac5a1bf1eadd4d92bcf06671530fd26ac1fd2df6446320d","dom_hash":"domhashdf9d10e8a20e4d7873dbd58d76f2e4e3","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"lisskins.click","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-18T17:31:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"Client IP","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"lisskins.click","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-12-03","domain_rank":0,"first_seen":"2026-03-14T17:31:35.630049Z","last_seen":"2026-03-14T17:31:35.630049Z","alert_count":4,"request_count":9,"received_data":99986,"sent_data":4253,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Yoast SEO:26.5","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"WordPress:6.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"s.w.org","ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"1993-12-01","domain_rank":27695,"first_seen":"2017-01-30T04:56:16Z","last_seen":"2026-03-09T02:13:01.106895Z","alert_count":0,"request_count":4,"received_data":6158,"sent_data":1815,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"lisskins.click/wp-content/themes/lis-skins/assets/js/scripts.js?ver=1.0.0","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"409ce16ad0ea5ffc93ddcf95b6024028","sha1":"10bf66674f7eb7e60dfd0b38b9ee912917db82b3","sha256":"1366fa64b7b935ee3ad90432b08545d54980938f8e0dcc103274e2ae0be5a71d","sha512":"22c704a0099bde45ec318c57bfcb674a851a692e2fd085e58b835ccf94f139c611f148bb388ffedf81e437794aabe5ac10d448860e5ea269edb9983c669265ec","ssdeep":"","tlshash":"eb31ae296fb4157a513f71b783cf66d83260601ba085de623aadce452fc097006f9ee9","size":1489,"data":"","first_seen":"2026-03-14T17:31:38.650475Z","last_seen":"2026-04-30T00:34:08.04802Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-includes/js/wp-emoji-loader.min.js","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"cc2f9ea1c231362296add925a1196209","sha1":"1afdfe6132bc1f401200bb26633958eca8d9aa63","sha256":"92f79005ab90d95455c47fde5f71e125937b5a2e208cb0d9628db0fce3b734bd","sha512":"9c78e24996b6cf8f75be830b88bd6dae031453fbc285d6ed93c71fbd355a0a6fae0693467307ac1a1c4e83c1da60cf2569ab69e2b9473b27d082c8860c764ae9","ssdeep":"","tlshash":"a2618796e77638dbb2f900f2697a0d47e7614435d6c8d438c9bea3141cb5893c274b46","size":3347,"data":"","first_seen":"2026-03-14T17:31:38.655063Z","last_seen":"2026-03-14T17:33:28.34399Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"965c78cc709ea789b4dad8914b66d669","sha1":"e1953f3a17c8e120d91070da3fadb4dcd3ac6696","sha256":"9262bec4ecd980faa784e3e4892513e4552dc0a44baecca7159faaa2fdb6db43","sha512":"b9af94e68eaa625ca2f2fee209e51aeb99fd42b62fc533b4cb8222c3d5f0ce408fc716783f6b4cb7142f0611815261e083e20a21518d9cbe187f1c6fa458abaf","ssdeep":"","tlshash":"d9f075a63c8a4434c3b302643fb39144303e352f748edd10f55c28513f90c6108eba1c","size":557,"data":"","first_seen":"2026-03-14T17:31:38.657034Z","last_seen":"2026-04-30T00:34:08.055067Z","times_seen":4,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"172.18.0.26","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-includes/js/wp-emoji-release.min.js?ver=6.9","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","size":22762,"data":"","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-06-19T15:12:28.693048Z","times_seen":275098,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-14T17:31:13.639Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T15:14:47.482999Z","times_seen":16550223,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":0,"dns":1,"connect":17,"send":0,"wait":0,"receive":0,"ssl":31},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"172.18.0.26","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-14T17:31:13.600Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:13 GMT\r\nContent-Type: text/html\r\nContent-Length: 178\r\nConnection: keep-alive\r\nLocation: https://lisskins.click/\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T15:14:47.482999Z","times_seen":16550223,"resource_available":true,"data":null}},"time_used":50,"timings":{"blocked":17,"dns":0,"connect":17,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"172.18.0.26","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-content/themes/lis-skins/style.css?ver=1.0.0","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET /wp-content/themes/lis-skins/style.css?ver=1.0.0 HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nCookie: lcid=0000\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: text/css\r\nContent-Length: 17301\r\nLast-Modified: Thu, 04 Dec 2025 07:38:31 GMT\r\nConnection: keep-alive\r\nETag: \"69313a77-4395\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17301,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"b3ebde2ea5aed7ce09c115eafa66b3f6","sha1":"adaeb90b72654ac251c4e1c50d60534cb6edd511","sha256":"df936082b1930e822f47a271ea873f16126b4181bfec3574da1d3cc6ee8a9b6f","sha512":"f04647a2c32f076a91edb0bc81008a29abdf7eafc1a64c34486be4eee35dbb472a0d2b2f8be437aaa218ad6ac2cdad06e990a4771704482d1372010a70625ecc","ssdeep":"192:96AKPM3+an6i8lVFHtpgvnGjRwkXMlexvojdjZFaZKqUuBe/B++j3U020PrVf1GH:AEDkD9tM15SzfS/j3N22JV1jop","tlshash":"d172229663e72524b93be9b4b542cf47b39c8143815ddab86ee4140c4cca2fd88b3b4c","first_seen":"2026-03-14T17:31:38.644094Z","last_seen":"2026-04-30T00:34:08.046751Z","times_seen":4,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-content/uploads/2025/12/favicon-2.jpg","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET /wp-content/uploads/2025/12/favicon-2.jpg HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nCookie: lcid=0000\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 13142\r\nLast-Modified: Thu, 04 Dec 2025 12:22:49 GMT\r\nConnection: keep-alive\r\nETag: \"69317d19-3356\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13142,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 200x200, components 3","md5":"d5f0fbc12c5586d33f92f1760e32e414","sha1":"45fd2de49af88d5b5d22b523cb76d302f658487a","sha256":"12dcfcc16a04e49f5d0c4701a3ceaab40bf016c1977fd88104d1d3054c1adf08","sha512":"4f99a816790e3dbde190b3177e309248c98f2a24a84118daafa9e8623a816591b1dbaf658e74d9c9b254338191e5c24dd94b76fdf9b8f0755ae72936777ea077","ssdeep":"384:4CsGnLfe1Pcs3ACazt1+iLo0W30is1ER6OC4:hsGaP33I1+9d6Y6e","tlshash":"fa42bf1d2b10f25dc2276478361dd2f4c319ba255e9f36266e8244eec3b088f8d79012","first_seen":"2026-03-14T17:31:38.645218Z","last_seen":"2026-04-30T00:34:08.048691Z","times_seen":4,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-content/uploads/2025/12/favicon-2-150x150.jpg","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.612Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET /wp-content/uploads/2025/12/favicon-2-150x150.jpg HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nCookie: lcid=0000\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 6046\r\nLast-Modified: Thu, 04 Dec 2025 12:22:49 GMT\r\nConnection: keep-alive\r\nETag: \"69317d19-179e\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6046,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82\", baseline, precision 8, 150x150, components 3","md5":"a42004ca65aee9654c96642682ff7173","sha1":"55039c588b74129c100466ca4f24ffaeee12c7c3","sha256":"29335d76257c289b5cfa99ff5a9c6c822eb4dc732fb15602120b374bbb3ddbd5","sha512":"043b209b5671cec329f88c7238b59882404e6477b032578f25480254859e74944cae7ace59a8fc781f0fae846edfa5c171b4458d9eccc1e9e3119b5ce2989bf5","ssdeep":"96:3fEeFrTuOLcPF8DDjpKoO9b6Z+n7p8THyInECfvYEFv++H08qVt8slIvA:3fnxvDp3sngVEdcJHnI","tlshash":"1ec17ea923c6109a5e0a8d3d80c94187289c9de87df583e53f3af6fece084de314a108","first_seen":"2026-03-14T17:31:38.646375Z","last_seen":"2026-04-30T00:34:08.049726Z","times_seen":4,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-includes/js/wp-emoji-release.min.js?ver=6.9","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.640Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET /wp-includes/js/wp-emoji-release.min.js?ver=6.9 HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nCookie: lcid=0000\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 22762\r\nLast-Modified: Wed, 03 Dec 2025 10:35:10 GMT\r\nConnection: keep-alive\r\nETag: \"6930125e-58ea\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":22762,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19823)","md5":"f0cc9ba5cf46af0cd73d521803e3b07e","sha1":"7d2a74f87dc70a39eccce3bae1d4cc404cb134f4","sha256":"fd59b0ebf6282ed71647bf2f6e0d1925bbfd1f270865a832079ebb60259aabca","sha512":"7ec44f08676c195547a623504c7105ef3d0acea5839675599598043f3e0b5a3386452e3db6fbea90722f7be9e6effdae1b89c49e2b05b22b8c415616e07d471d","ssdeep":"384:WzevzApRZTbXU/3o//bEPhXgA5POkpJTX:Wsk9XU/3o//YpXgAs+hX","tlshash":"7fa2959ba33a4e8f343e3bd78d968f4dc9da555321c0e079dbefb6c169a00568274c80","first_seen":"2025-11-10T19:52:32.864936Z","last_seen":"2026-06-19T15:12:28.693048Z","times_seen":275098,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":17,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/1f98a.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/1f98a.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 14 Mar 2026 17:31:15 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 07 Nov 2025 05:21:38 GMT\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\ncontent-encoding: br\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 15\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2153,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ba34ab28ffd9aeddbce8253362a33dd1","sha1":"6786a197f49397b5c0495f9732ccfe72ac274a67","sha256":"5b5b42dd21db3a10ad01b079ccd22da94aa5a00a216fcef3052020354f6a5580","sha512":"ab75038ec5ace58ba4d5d3753a4327e7594dad66f52afc8769654533e400efdff79aa53f40ffe70184f59b8bd87b4038379de48184dd2ef196825eabc5a37374","ssdeep":"","tlshash":"7a4164e63770e080b4d18eaeef7d2f8b8105727e1d2506c4a7b8c84861cbeca980de00","first_seen":"2023-10-29T20:50:28Z","last_seen":"2026-06-18T01:06:05.600275Z","times_seen":44,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":59,"dns":5,"connect":7,"send":0,"wait":8,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-14T17:31:13.444Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-19T15:14:47.482999Z","times_seen":16550223,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":90,"dns":0,"connect":18,"send":0,"wait":0,"receive":0,"ssl":33},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"172.18.0.26","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-14T17:31:14.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLink: \u003chttps://lisskins.click/wp-json/\u003e; rel=\"https://api.w.org/\", \u003chttps://lisskins.click/wp-json/wp/v2/pages/5\u003e; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", \u003chttps://lisskins.click/\u003e; rel=shortlink\r\nSet-Cookie: lcid=0000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Yoast SEO:26.5","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"WordPress:6.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":36606,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832)","md5":"3baab14a588467a70eeca0799d420e8b","sha1":"da5e0551b8ba7ac96e6d33f642bcfab1f7c063f4","sha256":"7fc582979deb2eb1dfb689507708eb4205a6f4ae27a494ae74c1ea1d58a6737c","sha512":"db276a160715752f98203e681c33081f83f70c694dd8c48133641ecf208f9eda87fdb8fd944b76c3515bbb78704627c94b2b95cbef37f46e1f5918c851d132c9","ssdeep":"384:OgE0VHlK2/0r/ZdSZUaAskWcpTwUxqryW7pbUEEkg8gZ2TjlcVuLE0sl9Su:OcVFKfZdypJiqryWEB8nlIuo0sCu","tlshash":"73f2a53192e9047b260b92eac5a1bf1eadd4d92bcf06631530fd26ac1fd2df6456320d","first_seen":"2026-03-14T17:31:38.649487Z","last_seen":"2026-03-14T17:33:28.338565Z","times_seen":3,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":56,"dns":1,"connect":17,"send":0,"wait":466,"receive":1,"ssl":36},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-14T17:31:13Z","timestamp":1773509473,"ip_dst":{"addr":"80.89.224.136","port":80,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"ip_src":{"addr":"172.18.0.26","port":42992,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO HTTP Request to a *.click domain","source":"{\"timestamp\":\"2026-03-14T17:31:13.632973+0000\",\"flow_id\":228636600903680,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.26\",\"src_port\":42992,\"dest_ip\":\"80.89.224.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2858675,\"rev\":1,\"signature\":\"ETPRO INFO HTTP Request to a *.click domain\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2024_10_10\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\"],\"updated_at\":[\"2024_10_10\"]}},\"http\":{\"hostname\":\"lisskins.click\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://lisskins.click/\",\"length\":178},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":671,\"bytes_toclient\":591,\"start\":\"2026-03-14T17:31:13.600064+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.click/wp-content/themes/lis-skins/assets/js/scripts.js?ver=1.0.0","fqdn":"lisskins.click","domain":"lisskins.click","tld":"click"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.click","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 09 Dec 2025 09:34:45 GMT","end":"Mon, 09 Mar 2026 09:34:44 GMT"},"fingerprint":{"sha1":"54:F7:5F:36:6B:08:2D:99:D3:3C:84:BC:10:53:67:62:55:43:98:13","sha256":"48:FE:D7:83:49:51:10:6D:FE:CB:9A:AE:85:2A:57:94:B2:27:2F:46:9D:A5:44:85:64:E1:76:29:8F:07:F5:B2"}}},"request":{"raw":"GET /wp-content/themes/lis-skins/assets/js/scripts.js?ver=1.0.0 HTTP/1.1\r\nHost: lisskins.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nCookie: lcid=0000\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 14 Mar 2026 17:31:15 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 1489\r\nLast-Modified: Thu, 04 Dec 2025 12:36:40 GMT\r\nConnection: keep-alive\r\nETag: \"69318058-5d1\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1489,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"409ce16ad0ea5ffc93ddcf95b6024028","sha1":"10bf66674f7eb7e60dfd0b38b9ee912917db82b3","sha256":"1366fa64b7b935ee3ad90432b08545d54980938f8e0dcc103274e2ae0be5a71d","sha512":"22c704a0099bde45ec318c57bfcb674a851a692e2fd085e58b835ccf94f139c611f148bb388ffedf81e437794aabe5ac10d448860e5ea269edb9983c669265ec","ssdeep":"","tlshash":"eb31ae296fb4157a513f71b783cf66d83260601ba085de623aadce452fc097006f9ee9","first_seen":"2026-03-14T17:31:38.650475Z","last_seen":"2026-04-30T00:34:08.04802Z","times_seen":4,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/26a1.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.703Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/26a1.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 14 Mar 2026 17:31:15 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 451\r\nlast-modified: Fri, 07 Nov 2025 05:21:38 GMT\r\nx-frame-options: SAMEORIGIN\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 15\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":451,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcca43b1c7aa91d47f62962ce2422ae1","sha1":"6bd13c3ba629e5f79d9ddf15cc79b7dc34729638","sha256":"d3a6d0c18f6887f771aa3cd51db375e7a9588e1af63801cc100cd9bcc5bccaac","sha512":"17ca2fa881ffffb8be0e67b1d689c6e977df3ba079a4c36f8607b824763ae3c9e1f7d6791230ea71a4128d6826693c95f2b55a3297686a7b7c7939ea139bb596","ssdeep":"","tlshash":"07f0236163fd6658dacdc53cfba194c0f05ab0de01b9888897c69710127ff09b710411","first_seen":"2023-05-15T16:34:06Z","last_seen":"2026-06-19T14:02:10.614689Z","times_seen":3004,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":47,"dns":0,"connect":10,"send":0,"wait":8,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/1f6e1.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/1f6e1.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 14 Mar 2026 17:31:15 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 433\r\nlast-modified: Fri, 07 Nov 2025 05:22:04 GMT\r\nx-frame-options: SAMEORIGIN\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 15\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=1.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":433,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ad2e4d6e7b90ca6005a5038e22b099cc","sha1":"0d534b09038847fc79497ac76aa3e122e9897921","sha256":"01c03b8eb0f7f27dd5ec8e28f4fe83079c56521e05b05e5099675154c7f10458","sha512":"2206b788fa4966c8c60ff867c33f27ea5e7104e16f99212fcf06be60041077a5dc17e95dbe2289236f4cc1ddc1df88c240a426a3cf70ae6e7b0c013e7df955f1","ssdeep":"","tlshash":"90e05cc6a739309431dad744df7d34e49d7790ea271d0a9950d05d256548f4e9461e04","first_seen":"2023-04-14T23:57:48Z","last_seen":"2026-06-19T08:50:35.851248Z","times_seen":1071,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":36,"dns":0,"connect":8,"send":0,"wait":8,"receive":1,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.w.org/images/core/emoji/17.0.2/svg/1f4b3.svg","fqdn":"s.w.org","domain":"w.org","tld":"org"},"ip":{"addr":"192.0.77.48","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.click/","date":"2026-03-14T17:31:15.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.w.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 19:44:39 GMT","end":"Sun, 24 May 2026 19:44:38 GMT"},"fingerprint":{"sha1":"56:DE:8F:AC:F7:7D:09:E2:76:F8:9A:D7:5D:9D:16:D0:8A:77:E9:1B","sha256":"F4:65:F9:07:07:7E:3C:D6:2E:1F:02:76:FC:58:8D:E2:FE:E1:4B:A5:5A:D5:4C:AE:78:56:62:41:A7:28:80:CC"}}},"request":{"raw":"GET /images/core/emoji/17.0.2/svg/1f4b3.svg HTTP/1.1\r\nHost: s.w.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.click/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 14 Mar 2026 17:31:15 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 07 Nov 2025 05:26:00 GMT\r\nvary: Accept-Encoding\r\nx-frame-options: SAMEORIGIN\r\ncontent-encoding: br\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccess-control-allow-methods: GET, HEAD\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 15\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1017,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ae85f3ba482693c99192d68b402b691c","sha1":"00afcdef98f55954ad726f0753bf2ce0f701cab6","sha256":"369a2f73463f01b0cd5c8329a356b9108d8adf8f85b43d3446a69184853d6dc5","sha512":"55e965b31c8390d99f2504a96ca98d1f8206c67e75fc1092a3e50eca43f6ae3c57fe3dddc4c3123eeb578b9115f1331758783f268e2c112faed7fc17f655c47e","ssdeep":"","tlshash":"f21132ca2370f7c4cc8bc68d2f6ee9d94201a0ae20b940d6690e671c229becd3d08d44","first_seen":"2023-06-17T17:15:03Z","last_seen":"2026-06-19T08:50:35.795581Z","times_seen":1546,"resource_available":false,"data":null}},"time_used":94,"timings":{"blocked":40,"dns":0,"connect":9,"send":0,"wait":8,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}