{"report_id":"eadb25f1-0312-48e4-a685-a2f61a81b8cf","version":6,"status":"done","tags":[],"date":"2026-03-18T10:44:09Z","url":{"schema":"http","addr":"leroynutra.com","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"leroynutra.com/","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"title":"Leroy Nutrascience, manufacturing of all nutraceutical products like Oral liquid, Tablets, Capsules and Powder, Ahmedabad, Gujarat, India.","dom":{"size":30339,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2863)","md5":"e3457bf5e7f3b4cb68468f5acbc9fbaf","sha1":"f84f0391f3108233f6867a604e8a2ef0bac3c89f","sha256":"0490ba5d6be44c9e5686e2f9c372bc8afe5a2b2093b13d60bb40ed6691818cd2","sha512":"45cc5784f42860054d0719e7983dfd9921e6cab366c4a49bd2eb932260c4f79affcb251754e23f8d55cbca39ed10aeee84efe14a93fb14239a0dfde14c0d7958","ssdeep":"768:evtO4Am9ZSrooIEWgpmwAbUbibmb/R5wZDUAF3xAj+rwq:evtOW9ZSrooIEWgpmwAIOSbgZDUIxAyB","tlshash":"fdd240219afa2027099353d06530175bbee2d607da076d5072fe0bdaafcbe5acc0758d","dom_hash":"domhash5748b53c94ae0ea21166fd7a6b17b354","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"leroynutra.com","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-22T10:44:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"leroynutra.com","ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":108,"request_count":36,"received_data":3495207,"sent_data":15875,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"prettyPhoto","description":"","website":"https://no-margin-for-errors.com/projects/prettyphoto-jquery-lightbox-clone/","common_platform_enumeration":"","icon":"prettyPhoto.png","categories":["JavaScript libraries"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"leroynutra.com/js/myscript.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7bdbde771c99def2a3886ed631f92b2e","sha1":"7f18dc8375d1ed1dc04af6258517585727e15988","sha256":"71573ee032262057f9168c97a9f0b4f4a7ecf0702a7e6d51770e5f1bddd40a67","sha512":"b41a4d4a4b2b2813cb2fc5c489f0ea719931d32ad3dab08eca4bd62112e7f953be40ebdf0252e0fc030567804ca8b4cee6e00f0d9342a1c373e4dbeb012563d7","ssdeep":"","tlshash":"c2510123f1bdc42fb1b376115d3a2801d93dc15e5500c8a2b87c94f936aa2ad87e2e4d","size":2441,"data":"","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-04-01T15:30:56.977968Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/camera.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b0ead29295e04bbcae2d8433497705ae","sha1":"0d318e9ae27eb1aa52aee70c49abb954eca206ec","sha256":"3b9ee30630280f6586684bf080b6fe1fc5d30c173c04bbee206a9b03c0a96ad6","sha512":"58f4a1f606ab72e72a21d49df46aa691f7cf94481cdcae1fae27a132c541dcfeeef6674ac26285e8f1abc7aa177bf33b71d46129ae73d98dc82b2c847da0ccf1","ssdeep":"768:UNa3hNIjsBrmSgEQPO08D62H7xzOmyFdOjoYW+:Ma3hNIjsBrcO08D62H7xjy3qoW","tlshash":"166341ec735db65bc6d35276403da848de2cc8328402cdfbf8a6d00cd8e55994766dea","size":70591,"data":"","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-03-18T10:50:42.252629Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.mobile.customized.min.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ea59fe8222cc61ffdbd41119ce23fd25","sha1":"737d9996cd2705b3457167b1f0a352232a10253a","sha256":"654595cf8b565940ef6b5765d3047af2794b13efeb6fdc661ded7f5ccf32ce0c","sha512":"6094b5fe8ce03c2a7e31a66f5753f4bb21c00937b360b860453d022827e81f33f289fa8a3a69e0e653ade21e801ef578ae9ec3ad1d8218e78d4bfb09868867a2","ssdeep":"384:AKCda0BL3liEPys8C5w+J1HAZ3vePKL3VYb2:A9Ddys8CuYKZ3vePKL3Wi","tlshash":"ef72f949f742341b95e73575e23f0247b07264efe64948a8e065ecd07d38aa8562bf3c","size":17519,"data":"","first_seen":"2023-03-07T01:18:54Z","last_seen":"2026-06-16T06:21:25.717203Z","times_seen":656,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"050ff166418fa1e423e2309f4fb2313b","sha1":"5dac5c5589fc449951cc9a73be539a2968c16f96","sha256":"25df847869e41c6f152fe9bcbf7bc15f884b6eabc5e81b5ccb69d27c5ff6d71b","sha512":"60df6da7f0078be8fda4e819e2b430449e229b616848945f88f0f78f993ce3738d5da359a872b4ff80dc6d14b5c0dede18e22f8ed52c50be9cc10c9badecc100","ssdeep":"","tlshash":"68b0120a71008830805f3191df2f9b583c3100435d402800451d24c4ae20a47c917ac8","size":96,"data":"","first_seen":"2026-03-18T10:44:16.918685Z","last_seen":"2026-03-18T10:50:42.257809Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.jcarousel.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"87ab4f23bba38fe516cf38807234da42","sha1":"e16397d0573def0788e812601efa1adbba111772","sha256":"33945143b809f91a1550dc596f424c433e2938acbe800264b8239369302b33c5","sha512":"460abc69c07bd001c39af2cf2f8ea78118d674154673cb6e4a978b8ce68a515b5ffc7f0b0c74aa93147ac7cc27b20c4f452725e368d88435a1ad6785a95c6632","ssdeep":"768:/tvkoKPcCK3KRH/KVpHBBcPBdcTBuxR5ayQ6ASgN4ZTd8MeXeH:lzKFG0hgoR5aCASgN4ZTd8M3","tlshash":"89f2cc8d279a121599b3b37e8e0a514cf73a863b4606921c7cbd87d45fb123042b9fbd","size":36260,"data":"","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-07T16:23:23.729876Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.tweet.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9c7e79cae021aa2f285ad57c420995cf","sha1":"5a69a36c1e8c42fac31d200beb542a263bbf0866","sha256":"7515708e84768a4e0b7abb129db82c5f51f4aaf27d53fe6aa80315828ec55350","sha512":"e85c656fff9497c513ede9059cdad8e98bdb5916c18a2cefb78d24a74dbd9801a919265576c354cc45646630ccbc812e76459ecf99d53577f04db8927312d40d","ssdeep":"192:G+uylKBdTSgZUpYIGASlc8S654oZ9mjqdZI1vSiYAoRpAVj1TO0+j4I7posiKt97:ckKCYIGASv5k+j4uViAVbODY","tlshash":"8652e665b15570324eb3b324cf17a280f73d811bc390da13baae96982fb1a15d371ed6","size":13413,"data":"","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-04-01T15:30:56.982542Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"79458684d19cd756ebc997354f06e929","sha1":"df30e7f051cf597921669a3fb8f05ef868253e7b","sha256":"e2ce729340d98a63721f834a58d776ffd2692f7d23aea5da4ea3addd9bc3696b","sha512":"d201b76766ec4c6033948da24c7267408001bf5a9916c3867f6dacd77ad0e718e7455b1d0c82215d5195f247f6692b6143644d1a37369410a1c5f89feaee3c2e","ssdeep":"","tlshash":"f3d08014f18c171d0c3367a505264510e95dec7519115cd477f7f03dcf5c151251ed5c","size":202,"data":"","first_seen":"2023-03-11T11:17:29Z","last_seen":"2026-03-18T10:50:42.25835Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.easing.1.3.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6516449ed5089677ed3d7e2f11fc8942","sha1":"82e40d060bc269a6dde20c3990ca5a4fea6ca754","sha256":"0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34","sha512":"6ebae34e9f46e8c90a5f94235f0c00424b1c7c5a4a8b7a248f267f337bc6c3083da88d66b28cfbcfe11b4012d7b139d52b73ce8d80461dc42f5f7e0614aaffec","ssdeep":"192:pl+Or8ur83V33R3hqRAsfAy4MOr8ur83V33R3hqo:zZr8ur83VHBhm+r8ur83VHBhL","tlshash":"a2f1038963c0631b4359f270aa3e5e4ff268642b566e681fcc5c5084bf7d339c27ad68","size":8097,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-06-17T07:26:37.305279Z","times_seen":18055,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.min.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b6ecf17e30037994d3ffee51b525914","sha1":"d09d3a99ed25d0f1fbe6856de9e14ffd33557256","sha256":"f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729","sha512":"468c0f964014d76ec5966f5589b2ccc0a7b5f3e8a785134897dfa282a3e6824ce9a75584c9404b77a6962fef99547356aabe8aa71a6499e2568b9de792d90579","ssdeep":"1536:bYUfBybwh3KRI83RExoulFXo7CkSsz/G0bSVze/3260eMSTC5bqYKKhwFvxizJSM:XIi3kIP9kSsgo/ZvxYrtPTKCNtHyUtCg","tlshash":"c893e7e972d6716387b730a850af510bb13698e6b80c8c60f058d9e47e74e4960bbf7d","size":93435,"data":"","first_seen":"2023-03-07T01:12:05Z","last_seen":"2026-06-17T08:41:57.363531Z","times_seen":9816,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/bootstrap.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4e3dd42958202024edebfbb4f18664e9","sha1":"a30433820e87d841fa5a2117644fc59ac2edffcc","sha256":"f31b51b730cf2fcc49dd54095b583a5ebd6ec50176c75cfb3958427eb1ba1b56","sha512":"675e9a15169aae69dadac5c54630a003cf86917615a991c40a54482e544d404bb83fa5e77249d54b5946c06bbb54c79a491271483e51608ddd69f6584697ca38","ssdeep":"1536:YC/pYwbb5Oh4lyFJGHkmNby+Hws0KbXoAFUBIb5oTpQeK:Hp99OyGJaHNm+HwpcLUe5oT6D","tlshash":"5d43325a3a96311187b7a3baac0b954df739912b515750183cad82c42f30778a2b7ffc","size":58300,"data":"","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-28T17:17:51.574438Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.prettyPhoto.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"df5ed82a0659a0b31cd84d656d8637c9","sha1":"4452fc2e60a0d1a682cf465b9e27b0713cfcdf4f","sha256":"e117353e17f7c89acc2053a5298324797da12d6ab31cab0fdaf0cae822ab28d2","sha512":"05d78061e278c2a11729fc89c9554160e90eaed1f20320a968bb9249a1db1e5d6c364650dffe4f5bd7e65810b102ffbc1cf461c8e5808f6dc5c816dac594eb01","ssdeep":"384:subacGJU6Xy95hd+fCJw0GGGhcG3yqQ4rywHm9viCz5ZYi7f7l8MuzmsMDPojJR0:zaNJUYG5uB9hbyqndMxgP5N23n","tlshash":"42b286242d10656fc5d3e2aae4475b1cd2328a13a756d934f27ccc742be0a46a93bbcd","size":25216,"data":"","first_seen":"2023-03-07T12:59:38Z","last_seen":"2026-06-15T14:45:11.024113Z","times_seen":392,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/superfish.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"266740cfb6ca6ebf425ba05f39e497e3","sha1":"50bd249ac9fc3d503ef339e7a621f64612ddaea0","sha256":"1df0a97a473d8c61bf97e169023a1291a7c0181b8b666610801b6e87c5666a4d","sha512":"86a879445a4441cd4e3868b7ae5d72ebef2f92228b39a3f44f287142f8856c199ce54d64f78ce7c5ba2fd0e86900da3ae9a1441669b664b22b19b02552b1c1e5","ssdeep":"","tlshash":"1e71528cf7cf399ba993a22e413f8004ef7eca22d5898460b476584c2cd85485bc9d9c","size":3789,"data":"","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-28T17:17:51.644479Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"leroynutra.com/img/slider/3.jpg?1773830642813","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:44:02.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/slider/3.jpg?1773830642813 HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:11 GMT\r\naccept-ranges: bytes\r\ncontent-length: 352536\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:44:03 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":352536,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x690, components 3","md5":"e245395bd281b3dfa37855bc0767bea4","sha1":"c8f10bfab1a2bbb88d284c4591a6531140f017b6","sha256":"c6177f61ca44799081b684a482902c7f03adea89d9bf10ab1dbbad7f12906ecc","sha512":"e99c0c9f2aea76a48aa28dc5fa3803f2fd8c8836bd0fa89d70619d1c6b767d891c056c5f67417487f524576bd05ea1972bb3bccbdba79b0be0c5340c105ab121","ssdeep":"6144:nWVYBQiytjXYG6D0ggK15eB9Yi9xoGrrO6r7R4+vXjuw7aOtZtc7fJVC8lZe7uB0:8YnymdQggWo9D9xPO6R4m5/4JVC8lm5V","tlshash":"a3742313b0bbb76cd5472f3a3a62365c2a211efc765a395417c7210ddc7e20e28ed899","first_seen":"2026-03-18T10:44:16.856478Z","last_seen":"2026-03-18T10:50:42.245382Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1273,"timings":{"blocked":283,"dns":1,"connect":136,"send":0,"wait":272,"receive":435,"ssl":143},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.tweet.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.192Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.tweet.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:26 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4964\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":13413,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"9c7e79cae021aa2f285ad57c420995cf","sha1":"5a69a36c1e8c42fac31d200beb542a263bbf0866","sha256":"7515708e84768a4e0b7abb129db82c5f51f4aaf27d53fe6aa80315828ec55350","sha512":"e85c656fff9497c513ede9059cdad8e98bdb5916c18a2cefb78d24a74dbd9801a919265576c354cc45646630ccbc812e76459ecf99d53577f04db8927312d40d","ssdeep":"192:G+uylKBdTSgZUpYIGASlc8S654oZ9mjqdZI1vSiYAoRpAVj1TO0+j4I7posiKt97:ckKCYIGASv5k+j4uViAVbODY","tlshash":"8652e665b15570324eb3b324cf17a280f73d811bc390da13baae96982fb1a15d371ed6","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-04-01T15:30:56.982542Z","times_seen":6,"resource_available":true,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":860,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/top_socials.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.764Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/top_socials.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:45 GMT\r\naccept-ranges: bytes\r\ncontent-length: 6176\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6176,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 170 x 60, 8-bit/color RGBA, non-interlaced","md5":"9d21bdc8d67788f10975c4dcd072e08b","sha1":"43fb08bd7290050d262d531d4c795530d444413e","sha256":"fc8aaf00ebde7ad43c75e1d11e157bd17747a10cef675505114fec0972c7481d","sha512":"f088d6f3d5c25833b99d9fe8de08c479888eba8c9203e6c40f4c98b9f62b60dc320966882eba1ede970f66b91ca6c0ab38d49f645dda93b44ab792139e724820","ssdeep":"192:jSDS0tKg9E05THDaWONbDXFX5UCI06PoCSJ:WJXE057WWONbwmGSJ","tlshash":"e1d18e1b8ca4024f5e4f69c03c7d0786da2622a8bf613f7b60c665cd9ca1a0b6f45079","first_seen":"2026-03-18T10:44:16.858397Z","last_seen":"2026-03-18T10:50:42.239054Z","times_seen":2,"resource_available":false,"data":null}},"time_used":265,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":265,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/icon4.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/icon4.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:24 GMT\r\naccept-ranges: bytes\r\ncontent-length: 5800\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5800,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 70 x 140, 8-bit/color RGBA, non-interlaced","md5":"c2e38e9b611c6fca1d11197507d10a9f","sha1":"d2a13af3f597df3182d654d42d9169df07c79279","sha256":"84437b5ae1044d0af903415716cabacaa75a21efc3b8619e260d9bb997e4bbb9","sha512":"71c7d78e37af43ba9b38923438e4073936613e10542afdff9c3fc20ee06802e1b4fc68ddfa908ad799e177b1194fe9eb178a41c673a4147137b42c77e6b00b94","ssdeep":"96:42XjDHheMb9ZhBfPOO5rBFVEC0p9jHX9/vlzQvbYIBHVr:rDH9b9ZhpPOO5rHVE/p9jH3NIBHVr","tlshash":"21c19ecd5fc0b892d10cf4d366a38d2b8a9ba71434f1cd259997cd1226721f4a65d2cb","first_seen":"2026-03-18T10:44:16.859314Z","last_seen":"2026-03-18T10:50:42.243641Z","times_seen":2,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/skins/tango/skin.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.174Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/skins/tango/skin.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:26 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 900\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4634,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a44d1935cfdc3be223dc37ba6ba79c20","sha1":"47ef7647f033d8ace1c65011011b55bb52b7d047","sha256":"34407f6940408a971891da214d60af296a0f8034fbe07d1f0d6ba5ffa2ffa456","sha512":"a9ddd901d75c3cea60c9c2d363d14eaa8548984c258808e7d4fead26be8f1e7a447725b60e5ae610a4cc1ba4d1c875451db55bfdf8c779f9f72569e57f6e8bda","ssdeep":"48:OVakjR1NNNTC1KS6wN6ozAM1NNC2t1j/M1qNyNM1qNyhrEM1PNvNBywzT1wSyo5q:UNkLvlGcN15LW/","tlshash":"52a1b861b79128a95d09538855012964f29f2e09eb05fcb46bf3615f07de373206ff8e","first_seen":"2026-03-18T10:44:16.860233Z","last_seen":"2026-03-18T10:50:42.24142Z","times_seen":2,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.jcarousel.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.jcarousel.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:13 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 9713\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":36260,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"87ab4f23bba38fe516cf38807234da42","sha1":"e16397d0573def0788e812601efa1adbba111772","sha256":"33945143b809f91a1550dc596f424c433e2938acbe800264b8239369302b33c5","sha512":"460abc69c07bd001c39af2cf2f8ea78118d674154673cb6e4a978b8ce68a515b5ffc7f0b0c74aa93147ac7cc27b20c4f452725e368d88435a1ad6785a95c6632","ssdeep":"768:/tvkoKPcCK3KRH/KVpHBBcPBdcTBuxR5ayQ6ASgN4ZTd8MeXeH:lzKFG0hgoR5aCASgN4ZTd8M3","tlshash":"89f2cc8d279a121599b3b37e8e0a514cf73a863b4606921c7cbd87d45fb123042b9fbd","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-07T16:23:23.729876Z","times_seen":7,"resource_available":true,"data":null}},"time_used":855,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":855,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/jcarousel_arrows.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:49.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/jcarousel_arrows.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/skins/tango/skin.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:26 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3365\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:49 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3365,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 45 x 42, 8-bit/color RGBA, non-interlaced","md5":"9fe09f91ac835a9d04c6823fbf6aca26","sha1":"a270e2926a057de186433afed67929d595e986ce","sha256":"560c6252a0ccf6fa7a307db8f02434236b8ac2e0de71f13606d7f0c192382e63","sha512":"359493030700fce54cd670d824bbe65f9c46320ee7df5c7a1864533410b7788ce93ac8b4aa50600fa699d70057d66ec2627afab9f2dc02381e6c2890e9915431","ssdeep":"","tlshash":"49617d9f4d6090af7a9df0620fdd0642a71652acd5a73a3854c166ee5879c0f5ba2030","first_seen":"2026-03-18T10:44:16.862733Z","last_seen":"2026-03-18T10:50:42.244734Z","times_seen":2,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/theme.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/theme.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 6088\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":19576,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"2f433c00fbabf41e4aaa23ff5696bbcd","sha1":"cb51e76065354b37b6dd85fddb92b1810907ad10","sha256":"5c97074a74ef8db904cff2b10284d81ecb911c4579c9f7f19b4a57fc7947f311","sha512":"f881c48f4ab0b87a9fc244d1a64669c4f986b0b57f8b0af162903b3d6814c84904394d5444f7dfb90e88099718e0f1bab3d5cb31e60e45e28e7bc2df2bbca60a","ssdeep":"384:gqqLcSCVhqWLhZ9pE+Li+iRxa2sveg05INGuSgjOjw46wr3E9gcR7u1ZSEBhc9yi:MLcSCVhqWLhZ9pE+jiRxa2sveg05cUgj","tlshash":"3c928563ba552c48f1179018fe476a785b3d4002ed1f5e7ab66e7a3ccb860d891b3b4c","first_seen":"2026-03-18T10:44:16.863715Z","last_seen":"2026-03-18T10:50:42.257342Z","times_seen":2,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/logo.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/logo.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:34 GMT\r\naccept-ranges: bytes\r\ncontent-length: 9538\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":9538,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 277 x 65, 8-bit/color RGBA, non-interlaced","md5":"a5acf1a5450da213cc3af2482ffb6dda","sha1":"f0feb2a8f045f2f444ced6fdf27b5241bc995d58","sha256":"1f241e29211debb055dd11d288698dd4106e45f95be200b20e7f2434ca384601","sha512":"bf8ca628f907decef7e533c9aa68274956e2104a5de9a197e4418a014cf817dd49cbcaf314e6f0216bdfe2aeb57e0ce7e403689bded285c21a903816951302c3","ssdeep":"192:QSDS0tKg9E05TkNINW2bIAyZDurLZrDbTT32vwPUjgLcW+grg4E:3JXE05mINW2b/yDurLlDbIwPEgLprg4E","tlshash":"dd12cf978ca500afd1f470a404e5a691fa89778c9b2d39fc19c698e23c90e7b948e48c","first_seen":"2026-03-18T10:44:16.864873Z","last_seen":"2026-03-18T10:50:42.253782Z","times_seen":2,"resource_available":false,"data":null}},"time_used":711,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":128,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/home_blog/2.jpg","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.181Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/home_blog/2.jpg HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 292837\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":292837,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 720x505, components 3","md5":"b268fb6328620c665657820552a74575","sha1":"4ba0539c45689ddbb3962b28fe9ced765f444918","sha256":"f55596aec9ce6b3801c24af0fd09a821a7523ada8fd550218a0467d2cb8220b4","sha512":"0ea80bfb7de60d8ece08a17e58a10d7cc883ad7d48f5cd8254d4a3f8875ac7f11c4edaa52f2a1ebb0df9af7a9641f2b04ead16126b17a20863d2b1a240f5381f","ssdeep":"6144:4pP8aGTuQ7cMc0L8eZdHap/Ij4WTWzJf7iq1AgzFaKCZ89tuaKj0v6WKdTxs4Ra:k8aGTuTb0LzHapg039f+q+gxaLcjATNm","tlshash":"4f5423ea124ed485c74f69348a3335d1da568706b3b8363580e6014ef5eaf733cea58a","first_seen":"2026-03-18T10:44:16.865733Z","last_seen":"2026-03-18T10:50:42.248701Z","times_seen":2,"resource_available":false,"data":null}},"time_used":581,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":288,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.easing.1.3.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.easing.1.3.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:09 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 2763\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":8097,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"6516449ed5089677ed3d7e2f11fc8942","sha1":"82e40d060bc269a6dde20c3990ca5a4fea6ca754","sha256":"0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34","sha512":"6ebae34e9f46e8c90a5f94235f0c00424b1c7c5a4a8b7a248f267f337bc6c3083da88d66b28cfbcfe11b4012d7b139d52b73ce8d80461dc42f5f7e0614aaffec","ssdeep":"192:pl+Or8ur83V33R3hqRAsfAy4MOr8ur83V33R3hqo:zZr8ur83VHBhm+r8ur83VHBhL","tlshash":"a2f1038963c0631b4359f270aa3e5e4ff268642b566e681fcc5c5084bf7d339c27ad68","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-06-17T07:26:37.305279Z","times_seen":18055,"resource_available":true,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.mobile.customized.min.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.mobile.customized.min.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:20 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 7507\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":17519,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17219)","md5":"ea59fe8222cc61ffdbd41119ce23fd25","sha1":"737d9996cd2705b3457167b1f0a352232a10253a","sha256":"654595cf8b565940ef6b5765d3047af2794b13efeb6fdc661ded7f5ccf32ce0c","sha512":"6094b5fe8ce03c2a7e31a66f5753f4bb21c00937b360b860453d022827e81f33f289fa8a3a69e0e653ade21e801ef578ae9ec3ad1d8218e78d4bfb09868867a2","ssdeep":"384:AKCda0BL3liEPys8C5w+J1HAZ3vePKL3VYb2:A9Ddys8CuYKZ3vePKL3Wi","tlshash":"ef72f949f742341b95e73575e23f0247b07264efe64948a8e065ecd07d38aa8562bf3c","first_seen":"2023-03-07T01:18:54Z","last_seen":"2026-06-16T06:21:25.717203Z","times_seen":656,"resource_available":true,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":863,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.prettyPhoto.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.prettyPhoto.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:24 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 8474\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":25216,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3572)","md5":"df5ed82a0659a0b31cd84d656d8637c9","sha1":"4452fc2e60a0d1a682cf465b9e27b0713cfcdf4f","sha256":"e117353e17f7c89acc2053a5298324797da12d6ab31cab0fdaf0cae822ab28d2","sha512":"05d78061e278c2a11729fc89c9554160e90eaed1f20320a968bb9249a1db1e5d6c364650dffe4f5bd7e65810b102ffbc1cf461c8e5808f6dc5c816dac594eb01","ssdeep":"384:subacGJU6Xy95hd+fCJw0GGGhcG3yqQ4rywHm9viCz5ZYi7f7l8MuzmsMDPojJR0:zaNJUYG5uB9hbyqndMxgP5N23n","tlshash":"42b286242d10656fc5d3e2aae4475b1cd2328a13a756d934f27ccc742be0a46a93bbcd","first_seen":"2023-03-07T12:59:38Z","last_seen":"2026-06-15T14:45:11.024113Z","times_seen":392,"resource_available":true,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":860,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/camera.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/camera.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:37 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 967\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3763,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"d44a96aa0b3a68dc12369b61856e7e2c","sha1":"f84b51b7d6cd1adfdd123f7e9d2b65b61102aaff","sha256":"755e792d4afea6d7d2856fcec6c04705efd423fb3cc521aeec3906febe236808","sha512":"929c285c5ecf01b8214c66fa1517c31b9545af96e4b778a7e5848d5a72cbf484c2ba3810ac33af7e34445664f5bffeb3438096a077a45fd3a9708fdd5c1a08aa","ssdeep":"","tlshash":"fb71776e25ac3e4b9cdbe398181d17b8171e0c40ae4adf0ea655f81ceacd2a641a34c1","first_seen":"2025-07-04T19:54:14.063171Z","last_seen":"2026-05-24T22:00:44.690532Z","times_seen":7,"resource_available":false,"data":null}},"time_used":585,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":585,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/bootstrap-responsive.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/bootstrap-responsive.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:32 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 5617\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20897,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"07146bfe8ff596fa664a0435f680ba80","sha1":"222242b854e03da6e609a008b73a42a634dfed08","sha256":"796a23945950edef3f7ef253336f42e918b42d5953f3e2014e2c2201758917c3","sha512":"c2f2834c2a5e0939c62d044cc68c45c857bd3e816f34ed1f23f82be59fb12c111a415a5a772a9659424423e86f8a008b1b1cffff7f945ede624b05f8dc57df50","ssdeep":"384:GDi+XnHtUrZKt+uSmu+c30sDSGCxGfGYb/0EUN0QT0BH41PFFL7XPay:0iOnHtUrZKtqOI0+SGCxGfGYb/0Ery0Q","tlshash":"c092a09a3de21048fa72e1b92efd03047651a813e3bfed5339d991b8cf456495ca7e80","first_seen":"2025-07-04T19:54:14.070751Z","last_seen":"2026-03-18T10:50:42.247481Z","times_seen":3,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/home_blog/4.jpg","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.183Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/home_blog/4.jpg HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:23:07 GMT\r\naccept-ranges: bytes\r\ncontent-length: 150478\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":150478,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 720x505, components 3","md5":"e25a8dcc09ea1498d6918956ea1e19ce","sha1":"d8e1cc423b7664a95002358a36c58167e26da266","sha256":"25185400b95d87c3eb664f8e973ac1a83999fcdeb572085961ceb0045cbca516","sha512":"4f66d3053b7b53f43e08aa611342e075d401ea1eae328de38c0e6438a21a0ca751828db8d361cc1e7431468fc9209aa3aa647f9492e1c3fa615714da636d1ca3","ssdeep":"3072:l/W5O9Gdjlz3aJh2Z8vhqSTJmizWFQ+vuQDFLQNZ+ZB9i3dHm9e:RfEjluJkevHciShDFcNcZBI3dHm9e","tlshash":"2fe312f0ad23060dcf5196b1fc904dfa28a0d5b9a5cb14a1ed09b8d29cf014657fb2ee","first_seen":"2026-03-18T10:44:16.870937Z","last_seen":"2026-03-18T10:50:42.254354Z","times_seen":2,"resource_available":false,"data":null}},"time_used":865,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/favicon.ico","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:49.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:43:53 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1830\r\ncache-control: max-age=604800\r\nexpires: Wed, 25 Mar 2026 10:43:49 GMT\r\ncontent-type: image/x-icon\r\ndate: Wed, 18 Mar 2026 10:43:49 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1830,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"70e71c998cdcf07d9ed01b12b08ac311","sha1":"df201d2a1c87c91a61c3b7ce53636786f31653e1","sha256":"453d57de9c11a060c042f6adcaab9e5d0408138802601cde739b06a04a85a556","sha512":"e48f31182116aea4d5cd7f8f053aad34e6bf8f66b3c8dbf2ae755d02c2c6d0115f0ba61efa264b921979e4c1dc328da2326c7be73e864bd2ab685dc780a097b2","ssdeep":"","tlshash":"8831e9c5de91f8a14126fad228ef902bca370f80e8c5e0543e8dcd1295682f5743a8df","first_seen":"2026-03-18T10:44:16.871855Z","last_seen":"2026-03-18T10:50:42.239589Z","times_seen":2,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":153,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/slider/4.jpg?1773830629147","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:49.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/slider/4.jpg?1773830629147 HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Mon, 24 Feb 2025 05:37:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 233069\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:49 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":233069,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x690, components 3","md5":"0650da82d4310753e244c2adea0d7adc","sha1":"a8146b0dc4d3f2ac33f7c62fc4effe61da437668","sha256":"04833293a2acc01a20fed0f1e2b884237fac20778b17127df931f5fea08d251c","sha512":"8101f6927656784656bf6cb7e3a0501e457cd72afec179b46149cbec054d398bcdb8b3b92fa82f4bcc8a5be10d43acf769e162f546d584282bcd751c2e444f9d","ssdeep":"6144:fAwucMrq9VdYiE2CA8QySTXcd8rYQ8aXzUAmunnBN1FsBPw:4wuc6q9HXCA9ySC0S6zUAm6N3s+","tlshash":"7a3423b6e32070d7c180d7b29aa304d99f92d5191ca77e231ea5239ef774732548770e","first_seen":"2026-03-18T10:44:16.873173Z","last_seen":"2026-03-18T10:50:42.255507Z","times_seen":2,"resource_available":false,"data":null}},"time_used":165,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":157,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/bootstrap.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.171Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/bootstrap.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:35 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":116382,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f3bd6595843ff666297815e754e2e41f","sha1":"f4605f7878af35ccfcc1f23e70917b47358ade16","sha256":"3b3cd6821f62634bb1cbbfc5e6fe45390fd767e9aa82dbefd0e68180a4e652a8","sha512":"68d4adebdbc85c7a5f17991e3fa6051ea6dc9e510672394897ac9f6c38c058beed021a2f9f022c11b19740694a3364721f689d8f24199344a15d62e1241bbdee","ssdeep":"3072:ULUCRAySBp94WkHGWPJY6xUlaIrWkQuT4zVPg:MUCRAySBEWkHGWPJY6xUlaIrWkQuT4zm","tlshash":"09b362e2aaa11918702bc19866d1de82377d0083850fcd7eb2fe71acff499d84573e95","first_seen":"2026-03-18T10:44:16.874681Z","last_seen":"2026-03-18T10:50:42.25684Z","times_seen":2,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":294,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/superfish.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/superfish.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:31 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1645\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3789,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"266740cfb6ca6ebf425ba05f39e497e3","sha1":"50bd249ac9fc3d503ef339e7a621f64612ddaea0","sha256":"1df0a97a473d8c61bf97e169023a1291a7c0181b8b666610801b6e87c5666a4d","sha512":"86a879445a4441cd4e3868b7ae5d72ebef2f92228b39a3f44f287142f8856c199ce54d64f78ce7c5ba2fd0e86900da3ae9a1441669b664b22b19b02552b1c1e5","ssdeep":"","tlshash":"1e71528cf7cf399ba993a22e413f8004ef7eca22d5898460b476584c2cd85485bc9d9c","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-28T17:17:51.644479Z","times_seen":10,"resource_available":true,"data":null}},"time_used":863,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":861,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/welcome_bg.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/welcome_bg.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:48 GMT\r\naccept-ranges: bytes\r\ncontent-length: 262\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":262,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1170 x 1, 8-bit/color RGB, non-interlaced","md5":"2de803e98db29a01e011b284cb02c4c6","sha1":"d46c82902e5ca1b5b6eff46dbac5c2e033a6b958","sha256":"3b4c618e268ab754774bbee1980285f6eb0b521033009193cc1624c677fcde78","sha512":"921e182b135d8af0a49c0628a51fe27c59aff1ff4adccd5261f082f5ff18fa21a27c1633c364bddf401097d74bc04548a3601d2e4da9aee339db0677113b9765","ssdeep":"","tlshash":"03d095c4f1d57d159480454159dd95c4b0734d9e174297342007c00016b7d1a61b7fc2","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-03-18T10:50:42.244214Z","times_seen":9,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":261,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/testimonials_arrow.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/testimonials_arrow.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:43 GMT\r\naccept-ranges: bytes\r\ncontent-length: 3047\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3047,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced","md5":"f96b205be79e946e6074178d2d0b6edb","sha1":"099670c79d6993e2375300c9f4acd31c4005d2ff","sha256":"fac79fdaeac6281153d10daee6bf815e2916ee7c7dcf28bcd6969e7b3a872a0b","sha512":"bdd6cd4f278fbe9fe7560a5477dda654bf72cce2e006a708c6a92ba0dc06cade4eba16f1ca654fc73242ee9f9d22adcae226ecf3b50059b09828041c402e18a5","ssdeep":"","tlshash":"50516d9e9d70a04fb8dd78920ccd0142a37811bcd997363cd8d129dd40a6e075f76075","first_seen":"2026-03-18T10:44:16.884939Z","last_seen":"2026-03-18T10:50:42.254939Z","times_seen":2,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/slider/1.jpg?1773830629318","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:49.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/slider/1.jpg?1773830629318 HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:24:56 GMT\r\naccept-ranges: bytes\r\ncontent-length: 620701\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:49 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":620701,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x690, components 3","md5":"92befb6bcf63760c9e8cb7ebaffdfd09","sha1":"8fc9a36a3c7f82feed22f026135c9fe7cb88f331","sha256":"7f04bb1c6f86390821cfebec47cf70a65c9c5db5978b9aca4aadc6f51d13909b","sha512":"b44b967f0be728dd137883c49fb732d1d0b4a03c615b0f176eabb9fb2dd57d07d6ecddc2acf299d8202897ebafacadf35e1c9ecbeb9f5972354ee12b79a4b49a","ssdeep":"12288:lcm0OBdyCpMc8ahM8XlbCCuGnLDQVL2Dv8Bmjk7wdTg:lcm0G8ahMesiDQvRD","tlshash":"4ed42347d7876134b833eaa2a041ccde2978f4a258159747e6ed32f602192d355cbfec","first_seen":"2026-03-18T10:44:16.887599Z","last_seen":"2026-03-18T10:50:42.2407Z","times_seen":2,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":159,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/slider/2.jpg?1773830635823","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:55.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/slider/2.jpg?1773830635823 HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:05 GMT\r\naccept-ranges: bytes\r\ncontent-length: 633897\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":633897,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x690, components 3","md5":"c8074c23f4ee2060d22787bb54b3c75f","sha1":"683bb3dd9b8bee2148191c65847b4b707d9f4534","sha256":"4deee8e327992dee71d7602b59d2fb24d8ae52b4670040ae7bae47383e964f1e","sha512":"95ca03e592cbbfaf5a661f014b1c876ede88f8bfcd5df60c4c7446014c86ae77206e13c005a2171f5375dec54f1a1d4079e0fc5751c8e6c33cc2a73a66229f7e","ssdeep":"12288:LOy2SoTXNBhL6cJWadlOb/cbnXK4AUQvl+Tqv6aaeXhWpEN3foZd023VML0:PwXNfLdWqOLw7TCl+WDxhBS0ImL0","tlshash":"21d42308327b4a33d5aa85f350171764a19447e1ba8f4f6ed894dbf0e661bdefb029c0","first_seen":"2026-03-18T10:44:16.889412Z","last_seen":"2026-03-18T10:50:42.249747Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1448,"timings":{"blocked":291,"dns":1,"connect":139,"send":0,"wait":279,"receive":586,"ssl":149},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/myscript.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/myscript.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:28 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1127\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":2441,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"7bdbde771c99def2a3886ed631f92b2e","sha1":"7f18dc8375d1ed1dc04af6258517585727e15988","sha256":"71573ee032262057f9168c97a9f0b4f4a7ecf0702a7e6d51770e5f1bddd40a67","sha512":"b41a4d4a4b2b2813cb2fc5c489f0ea719931d32ad3dab08eca4bd62112e7f953be40ebdf0252e0fc030567804ca8b4cee6e00f0d9342a1c373e4dbeb012563d7","ssdeep":"","tlshash":"c2510123f1bdc42fb1b376115d3a2801d93dc15e5500c8a2b87c94f936aa2ad87e2e4d","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-04-01T15:30:56.977968Z","times_seen":5,"resource_available":true,"data":null}},"time_used":861,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/css/prettyPhoto.css","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.168Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /css/prettyPhoto.css HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:42 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 3886\r\ncontent-type: text/css\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":19588,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (402)","md5":"6917bc0d00583c94152cc065a371da35","sha1":"dbbcfb5fa48cca83b33c619168bd8076c635c3cb","sha256":"3ab33bb0bbe4859490b38cc5998b51a6ee84641420447a63da354886a6bd4a02","sha512":"353e7b26acdd8ef15a7e315692c176cee4f83a3b36b2727744c4b9b91d94d0b25f3c528f3e69c59bd0e449d37916cdaf611fa555d52d75ec1e0921b6293925a7","ssdeep":"384:wTyoLOgJYsVSg1kEa0Y3E+dS7Iwx0vHW6aCuJUfv0XAh/usbZTSvq+KauSORMW4E:wTyoLOgebRSvq+KauSOV","tlshash":"db9213382596bccfe15b823589d2db099e0e841edb457fbc91f8c9fd30c9255147a2ca","first_seen":"2023-05-06T07:28:28Z","last_seen":"2026-06-10T01:22:24.167088Z","times_seen":173,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/home_blog/5.jpg","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/home_blog/5.jpg HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Mon, 24 Feb 2025 05:37:35 GMT\r\naccept-ranges: bytes\r\ncontent-length: 94481\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":94481,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 720x505, components 3","md5":"6d5bd51fc24ec3cd7eb389982a6631d9","sha1":"bdddf84a475cce08c47ed9f06b4f71fc8a6603cd","sha256":"97bedb5036f815107a4c5a2870696125c6b7f79e0afbfed19e5a2c67dbe1097f","sha512":"05bef702f7ab24d4ad1549cef5d3c5c5af98a65ece27fe5a630a5ca4a2e365b3c901604d9791f191399cb372112e15dfca535de1e33a5c865ffb9e231f29e929","ssdeep":"1536:Bg9PyCvxnC3/Lo98UseAuTTMc3oWgG5oJAMKQqIHfX+hG7nVurbim43qKTYm:i9KCU3/G6elTMwP5oJAM7qI/X9ppwOYm","tlshash":"dd93122aee83ae92cad572bf115d7e5f6ae0983356ef05d52019b072f3847e50879038","first_seen":"2026-03-18T10:44:16.909285Z","last_seen":"2026-03-18T10:50:42.25089Z","times_seen":2,"resource_available":false,"data":null}},"time_used":713,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":131,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/foot_logo.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/foot_logo.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:16 GMT\r\naccept-ranges: bytes\r\ncontent-length: 6790\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6790,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 277 x 65, 8-bit/color RGBA, non-interlaced","md5":"e4f464a014bf1cd71102d9d664aa5ef3","sha1":"b6ff993f2c13551964117f5fa99c548147d2919b","sha256":"20b4489d947926acf5e2047881e7f25dbfc9320dde9ad104b9179ea7b5379b3f","sha512":"b9166e3a8777fbd2680cfdfa73212134d0c1ac76806eb21283fac61f7298a8763e4d5f69a58d9879bccddc9589169ecfb492ad9d29262d2dcbb8b079ce9d9604","ssdeep":"96:aqillO8R3E7pA+RPunj+pR2aZhwhfgWZdahbw7pKNtYGgSpKF8jfnWmmvMhY7SzB:zGRUtASpRxvwhVUwkYGJHjem+TSPt","tlshash":"c8e18e4e9289ec210684fec426f78849b93d4c94ed62f071dfd9a6f260460fb8025847","first_seen":"2026-03-18T10:44:16.910228Z","last_seen":"2026-03-18T10:50:42.249196Z","times_seen":2,"resource_available":false,"data":null}},"time_used":859,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":859,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/jquery.min.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:18 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":93435,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65480)","md5":"0b6ecf17e30037994d3ffee51b525914","sha1":"d09d3a99ed25d0f1fbe6856de9e14ffd33557256","sha256":"f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729","sha512":"468c0f964014d76ec5966f5589b2ccc0a7b5f3e8a785134897dfa282a3e6824ce9a75584c9404b77a6962fef99547356aabe8aa71a6499e2568b9de792d90579","ssdeep":"1536:bYUfBybwh3KRI83RExoulFXo7CkSsz/G0bSVze/3260eMSTC5bqYKKhwFvxizJSM:XIi3kIP9kSsgo/ZvxYrtPTKCNtHyUtCg","tlshash":"c893e7e972d6716387b730a850af510bb13698e6b80c8c60f058d9e47e74e4960bbf7d","first_seen":"2023-03-07T01:12:05Z","last_seen":"2026-06-17T08:41:57.363531Z","times_seen":9816,"resource_available":true,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":864,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/camera.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/camera.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:07 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 17673\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":70591,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (538), with CRLF line terminators","md5":"b0ead29295e04bbcae2d8433497705ae","sha1":"0d318e9ae27eb1aa52aee70c49abb954eca206ec","sha256":"3b9ee30630280f6586684bf080b6fe1fc5d30c173c04bbee206a9b03c0a96ad6","sha512":"58f4a1f606ab72e72a21d49df46aa691f7cf94481cdcae1fae27a132c541dcfeeef6674ac26285e8f1abc7aa177bf33b71d46129ae73d98dc82b2c847da0ccf1","ssdeep":"768:UNa3hNIjsBrmSgEQPO08D62H7xzOmyFdOjoYW+:Ma3hNIjsBrcO08D62H7xjy3qoW","tlshash":"166341ec735db65bc6d35276403da848de2cc8328402cdfbf8a6d00cd8e55994766dea","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-03-18T10:50:42.252629Z","times_seen":4,"resource_available":true,"data":null}},"time_used":864,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":863,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/js/bootstrap.js","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /js/bootstrap.js HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:35:04 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":58300,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"4e3dd42958202024edebfbb4f18664e9","sha1":"a30433820e87d841fa5a2117644fc59ac2edffcc","sha256":"f31b51b730cf2fcc49dd54095b583a5ebd6ec50176c75cfb3958427eb1ba1b56","sha512":"675e9a15169aae69dadac5c54630a003cf86917615a991c40a54482e544d404bb83fa5e77249d54b5946c06bbb54c79a491271483e51608ddd69f6584697ca38","ssdeep":"1536:YC/pYwbb5Oh4lyFJGHkmNby+Hws0KbXoAFUBIb5oTpQeK:Hp99OyGJaHNm+HwpcLUe5oT6D","tlshash":"5d43325a3a96311187b7a3baac0b954df739912b515750183cad82c42f30778a2b7ffc","first_seen":"2023-03-12T16:59:41Z","last_seen":"2026-04-28T17:17:51.574438Z","times_seen":12,"resource_available":true,"data":null}},"time_used":862,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":862,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-18T10:43:47.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 5525\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Wed, 18 Mar 2026 10:43:47 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"prettyPhoto","description":"","website":"https://no-margin-for-errors.com/projects/prettyphoto-jquery-lightbox-clone/","common_platform_enumeration":"","icon":"prettyPhoto.png","categories":["JavaScript libraries"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":23260,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (468)","md5":"0b7129a8e88d85f71968fa8594d15e1a","sha1":"92b7fa6804e4f2d6b1ff3863f9ffe08d194e0379","sha256":"00d828ce8a47d4e197e890c16a2a3d4da32e17d9bd9126d20bf3147270b02959","sha512":"354907103f53375b2814ba4021a0958b229348855a67819339d2382f8e4d044b19ab7cad9357c1c32a9c0f6b19c6d0f8e61f8db9f515db8b032075683d6116df","ssdeep":"384:MKtjXDVKwAbUbibmdb/Au5ZDU2SggnxG0Fs9Bf/:htTDVKwAbUbibmb/NZDU2xgU0m9BX","tlshash":"7da212659ef92027019243d56a302b2bbed3d557e64b6e0032bd0bdaafc7e89dc0315d","first_seen":"2026-03-18T10:44:16.913922Z","last_seen":"2026-03-18T10:50:42.253252Z","times_seen":2,"resource_available":false,"data":null}},"time_used":811,"timings":{"blocked":315,"dns":15,"connect":139,"send":0,"wait":181,"receive":0,"ssl":157},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/home_blog/1.jpg","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/home_blog/1.jpg HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:22:53 GMT\r\naccept-ranges: bytes\r\ncontent-length: 297815\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":297815,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 720x505, components 3","md5":"9bd6e6b05bbb9791405766104b31cca1","sha1":"d247680279ae1432889f9104ea67eaa617a67425","sha256":"0dbddcd15363e18c6a1c0c1f595840c047719573a0af66c8d7fe9e75928bfa5b","sha512":"e624f79bea0b61d16d856d938c4c7da4fd322b03119079414cc72fd98c3865bb1ed0fc3cc738d2c5df4e609f1fe067ec350910ae17c707a48db39d6127de5d3b","ssdeep":"6144:rxP3g2eBvZw2gjGgZ9SwwQkkiZEDCnJ+VOekYyvNSYcE3:rx/ehm2uGiVwQkPsCn+3kL1z3","tlshash":"3054235589599cbdc269f264816ee2305c3184dc82db77d2a3be8253b46fad390c8e3c","first_seen":"2026-03-18T10:44:16.914961Z","last_seen":"2026-03-18T10:50:42.248099Z","times_seen":2,"resource_available":false,"data":null}},"time_used":855,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":582,"receive":273,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/foot_socials.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/foot_socials.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/theme.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:18 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1149\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1149,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 140 x 36, 8-bit/color RGBA, non-interlaced","md5":"a8ab5597cc7d53c38bf8c5c6aff5822b","sha1":"dbc310edc6ecd28eed2ac6d5e4b1b6c682aebc13","sha256":"cfcdf39bba1d794b05a0219b0e4a3b279d7a3ceabd18c63a85036935ae62b121","sha512":"8d5aad19589d16a490f0e2ee356d47ecaf6472e075e0d223b0a16870247186ee0b1aa338ac16aeb8c46fd3d7f67e25498ddd725ba827c3b667cdc9ee25131ade","ssdeep":"","tlshash":"9b21d7db4f2fac8aab6a057183329010b3bf0b876804209824602e71cb89817a5e1c4b","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-03-18T10:50:42.24249Z","times_seen":4,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/slider_nav.png","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:49.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/slider_nav.png HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/css/camera.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:25:39 GMT\r\naccept-ranges: bytes\r\ncontent-length: 642\r\ncontent-type: image/png\r\ndate: Wed, 18 Mar 2026 10:43:49 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":642,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 88, 8-bit/color RGBA, non-interlaced","md5":"c0a326a5b2cf622178f72e6b9cb71396","sha1":"5638c459b54456bf1d4288e3fdec4b2b89dc7775","sha256":"3fcabff8a35edeaea2909a16aa3ed8e963fe6f5952e723e9de5354d6a4a44a5a","sha512":"f3eee15aba731954e265c62e346f304ad5055cd01279329093a1971449c00d7b7ffc576ac1b77c2355847e84ff3841723661186d61c1f3933d9ed2486a22f29f","ssdeep":"","tlshash":"aff0d3c96a857b7856151e83527cc134ddf31359914065d610d76fcd3558cc0888cbcb","first_seen":"2023-10-15T03:31:09Z","last_seen":"2026-05-17T15:17:23.460522Z","times_seen":8,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":155,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"leroynutra.com/img/home_blog/3.jpg","fqdn":"leroynutra.com","domain":"leroynutra.com","tld":"com"},"ip":{"addr":"162.241.123.17","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://leroynutra.com/","date":"2026-03-18T10:43:48.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webmail.leroynutra.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 16 Mar 2026 23:49:17 GMT","end":"Sun, 14 Jun 2026 23:49:16 GMT"},"fingerprint":{"sha1":"3E:7F:E1:BB:A2:E7:83:AE:FB:8E:81:CF:19:9A:67:3F:6D:2B:FF:1C","sha256":"11:F0:35:DD:1B:54:7B:1C:93:9A:09:1C:56:AA:C1:41:57:62:47:E8:B8:D3:62:8E:9B:25:CF:12:97:02:79:56"}}},"request":{"raw":"GET /img/home_blog/3.jpg HTTP/1.1\r\nHost: leroynutra.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://leroynutra.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 22 Feb 2025 07:23:03 GMT\r\naccept-ranges: bytes\r\ncontent-length: 235352\r\ncontent-type: image/jpeg\r\ndate: Wed, 18 Mar 2026 10:43:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":235352,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 720x505, components 3","md5":"cfb932f3a96ca8535dda44493a7d5b3f","sha1":"30d2752f538d90ffa55d98c372796a366ac34bdf","sha256":"822b77488f3d4ac41f4bf2b6dc62e4b67ad1e45e2691509f4dd83ee5fac28081","sha512":"133e1541380af011c1918bb0853606014d215d9e90e4a9ea6c48192dfda300a3f09f5e01a1424cdb3918a4f64e5c078a4d8c957bf1a2ae7d5555542d52771e38","ssdeep":"6144:DWd1M3c3WvdyYiRzIBBIdNh97WtKOwHpD88QGwH9Cqf5:c1svdfrBBIjhYtr6Dt8HkO","tlshash":"943423cc9f766a00419594fbc33194ea4cc44b451b7b5986ab299701c8f119facba3ff","first_seen":"2026-03-18T10:44:16.917765Z","last_seen":"2026-03-18T10:50:42.251356Z","times_seen":2,"resource_available":false,"data":null}},"time_used":860,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":854,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-18","alert":"Phishing Block","trigger":"leroynutra.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"leroynutra.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}