{"report_id":"ee8de581-7cb1-4810-9ba4-5b1e8cf3a915","version":6,"status":"done","tags":[],"date":"2025-09-25T21:39:07Z","url":{"schema":"http","addr":"casibom.dogrugrisadresi.com/","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"title":"Casibom - Casibom Giriş - Casibom Yeni Giriş"},"submit":{"url":{"schema":"http","addr":"casibom.dogrugrisadresi.com/","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-30T21:39:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"casibom.dogrugrisadresi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"casibom.dogrugrisadresi.com","ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-25","domain_rank":0,"first_seen":"2025-09-25T21:39:07.56611Z","last_seen":"2025-09-25T21:39:07.56611Z","alert_count":4,"request_count":4,"received_data":26497,"sent_data":1909,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"waust.at","ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":36042,"first_seen":"2016-01-28T18:24:33Z","last_seen":"2025-09-22T00:20:34.86064Z","alert_count":1,"request_count":1,"received_data":8428,"sent_data":413,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"t.dtscout.com","ip":{"addr":"104.26.10.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2013-11-01","domain_rank":54823,"first_seen":"2017-01-30T04:52:42Z","last_seen":"2025-09-21T23:53:22.301316Z","alert_count":0,"request_count":2,"received_data":3436,"sent_data":1018,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-09-21T22:11:31.798564Z","alert_count":0,"request_count":2,"received_data":16668,"sent_data":974,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-04T22:46:27.08817Z","times_seen":292486,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"waust.at/s.js","fqdn":"waust.at","domain":"waust.at","tld":"at"},"ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0fb0c08bd6a38c317cfe13488cb473e","sha1":"84338c9c04b399fc6d54d1e07d12f2bee6fd3fb8","sha256":"bfc69c4a8677df7bcbcf4262cdf722483ff9dae6a9887dda101fe6646eee7d0e","sha512":"14feaaee6cd0f5ee94eabf0c0627a652dee1f77094edb20d34104cd8aef53a7e8665a22e5c0b4645713388998b90a8608679e9b9927bf5a2b6ace2674622c7c3","ssdeep":"96:t5uENgmWA2sSNuYMb8NORDvckw9AVDx+ll8tbPmSQ2sCq0jjaNr0Bqwjnu8QIi/F:Vu4BbvjPVDxptbPmd2FBHjulIGQKG+I8","tlshash":"b5f1d67a355314725ffa10a5616fb305b831517faf869001809e84b826acf4f91eafba","size":7700,"data":"","first_seen":"2025-04-12T18:01:59.735488Z","last_seen":"2025-09-27T22:25:18.003719Z","times_seen":487,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"da9073db5ff1aa668fe02ac255e3421c","sha1":"e59484c5c0725984748dffcbe0e4fef8b4c1d2c6","sha256":"fbfb638226084fa2f3c133f0bdf926b1d47d6d95d748874b77205fd413c5c30a","sha512":"8222ccb261cf248726c51db2d67acf688de8727419d1f6a6653192ed124f6734eeeb26ccdcfeaf54a8c5a572e7751a02b052e4a4b9f0b25bf2b11ca1479c4eb1","ssdeep":"","tlshash":"cea0023c1a5b40bfc008560098794ad4a3b1221950f1663233041d20419f51c7485215","size":60,"data":"","first_seen":"2025-09-25T21:39:10.751923Z","last_seen":"2025-09-25T21:39:10.751923Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.dtscout.com/i/?l=https%3A%2F%2Fcasibom.dogrugrisadresi.com%2F\u0026j=","fqdn":"t.dtscout.com","domain":"dtscout.com","tld":"com"},"ip":{"addr":"104.26.10.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"51bd741af3fcc4984d1a753eebfa1141","sha1":"534664acf69cbbb5c9b97c96b63dd37bdc580da2","sha256":"3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c","sha512":"14958b02aed15cfa48facbdd8e8752ac7d1220631fb6af7658bcd5b804c0be52f9555a1d0ebe0bd68ee3a5f60164d97cbf020884d8757afaa3297d0768ab8886","ssdeep":"","tlshash":"0441a70bb5e9347813a2007a55ff235fb2324928ac1788c08196d804bc785faa1b6ea6","size":2079,"data":"","first_seen":"2023-03-07T01:03:00Z","last_seen":"2025-11-28T22:34:42.368027Z","times_seen":7807,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.dtscout.com/pv/?_a=v\u0026_h=casibom.dogrugrisadresi.com\u0026_ss=4a5ee2lq3u\u0026_pv=1\u0026_ls=0\u0026_u1=1\u0026_u3=1\u0026_cc=no\u0026_pl=d\u0026_cbid=5gqq\u0026_cb=_dtspv.c","fqdn":"t.dtscout.com","domain":"dtscout.com","tld":"com"},"ip":{"addr":"104.26.10.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"843f568744d40d9ba44706c4adf5794a","sha1":"a9a33df1ff9035b416d048dccf1bd2cf11f1548d","sha256":"dfbd0bf2a174e29afe08fb9e0a42fd120d834566e24bf83c5f780f8b020eca22","sha512":"915a2d2219cdbecfcce6b5f397e4b54bea00ec6241a69df4502004612858b131357e146e441e11757c37a74245f53f28dd1a182c01c34fb44bfd11e9658f310b","ssdeep":"","tlshash":"e790022964e584251fc9d740155a12844172039025c052998531592421497c0965f9b8","size":52,"data":"","first_seen":"2025-09-25T21:39:10.745668Z","last_seen":"2026-01-31T05:28:08.747607Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:45.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dogrugrisadresi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 25 Sep 2025 17:44:11 GMT","end":"Wed, 24 Dec 2025 18:42:25 GMT"},"fingerprint":{"sha1":"0A:7F:DB:00:A7:03:95:DB:79:02:2C:E1:2B:81:BD:42:2F:D8:C1:00","sha256":"29:B5:CD:15:1E:5C:BF:4F:C0:C1:01:BF:9D:47:7E:19:E6:ED:C2:72:82:06:04:88:9D:6E:B6:50:18:CD:6F:2D"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: casibom.dogrugrisadresi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript\r\nexpires: Thu, 25 Sep 2025 22:26:45 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZN%2Bm52scRRL2yz6YVZ5pHHr2sEiDeiF8eF5T8Z4lzhpPqy%2FwRCPuteF3JcF%2FEcJMCoqkF%2Fkg0Oa2T5Un1p%2FwqfeLBguftM55kr1%2FcslBN4QlCpnj4zwYwNZluQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\ncf-ray: 984dab9b5fa432fa-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-04T22:46:27.08817Z","times_seen":292486,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"casibom.dogrugrisadresi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"waust.at/s.js","fqdn":"waust.at","domain":"waust.at","tld":"at"},"ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:45.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"waust.at","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 Aug 2025 16:08:05 GMT","end":"Mon, 17 Nov 2025 17:07:33 GMT"},"fingerprint":{"sha1":"36:D8:6B:24:C6:E6:C8:AF:63:96:50:56:1D:40:88:5A:A9:5C:22:D2","sha256":"8E:A4:C7:DE:BE:00:BB:C8:F8:96:8E:5D:C3:FB:2A:0F:1C:7B:8B:FE:DA:35:BE:35:F2:6A:6E:DB:B2:D6:B7:34"}}},"request":{"raw":"GET /s.js HTTP/1.1\r\nHost: waust.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Thu, 12 Jun 2025 10:31:48 GMT\r\netag: W/\"684aac94-1e14\"\r\nexpires: Fri, 26 Sep 2025 20:55:52 GMT\r\ncache-control: max-age=86400\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 2572\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gglCVarq%2FV6zF5OtMi8wDlNAO3Rafw84aSvJSx88HULEnvaSWUBAZdbNcjbnulrj1EX4%2FPXObvT37%2BLZ3AuIqno2JU6X\"}]}\r\nserver: cloudflare\r\ncf-ray: 984dab9cabe256ab-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7700,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (7700), with no line terminators","md5":"e0fb0c08bd6a38c317cfe13488cb473e","sha1":"84338c9c04b399fc6d54d1e07d12f2bee6fd3fb8","sha256":"bfc69c4a8677df7bcbcf4262cdf722483ff9dae6a9887dda101fe6646eee7d0e","sha512":"14feaaee6cd0f5ee94eabf0c0627a652dee1f77094edb20d34104cd8aef53a7e8665a22e5c0b4645713388998b90a8608679e9b9927bf5a2b6ace2674622c7c3","ssdeep":"96:t5uENgmWA2sSNuYMb8NORDvckw9AVDx+ll8tbPmSQ2sCq0jjaNr0Bqwjnu8QIi/F:Vu4BbvjPVDxptbPmd2FBHjulIGQKG+I8","tlshash":"b5f1d67a355314725ffa10a5616fb305b831517faf869001809e84b826acf4f91eafba","first_seen":"2025-04-12T18:01:59.735488Z","last_seen":"2025-09-27T22:25:18.003719Z","times_seen":487,"resource_available":true,"data":null}},"time_used":412,"timings":{"blocked":197,"dns":4,"connect":1,"send":0,"wait":8,"receive":0,"ssl":200},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"t.dtscout.com/pv/?_a=v\u0026_h=casibom.dogrugrisadresi.com\u0026_ss=4a5ee2lq3u\u0026_pv=1\u0026_ls=0\u0026_u1=1\u0026_u3=1\u0026_cc=no\u0026_pl=d\u0026_cbid=5gqq\u0026_cb=_dtspv.c","fqdn":"t.dtscout.com","domain":"dtscout.com","tld":"com"},"ip":{"addr":"104.26.10.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:46.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dtscout.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 Aug 2025 12:11:28 GMT","end":"Sat, 29 Nov 2025 13:05:40 GMT"},"fingerprint":{"sha1":"8C:1A:8B:5A:0D:05:D0:E1:27:9B:25:7F:4F:AD:2F:0D:B4:F7:E5:14","sha256":"6E:3E:4E:99:17:89:21:6A:AA:63:31:A7:CE:8D:C6:4C:29:96:63:AE:64:9F:42:19:D7:28:92:10:03:EE:8D:75"}}},"request":{"raw":"GET /pv/?_a=v\u0026_h=casibom.dogrugrisadresi.com\u0026_ss=4a5ee2lq3u\u0026_pv=1\u0026_ls=0\u0026_u1=1\u0026_u3=1\u0026_cc=no\u0026_pl=d\u0026_cbid=5gqq\u0026_cb=_dtspv.c HTTP/1.1\r\nHost: t.dtscout.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nCookie: df=1758836326\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 25 Sep 2025 21:38:46 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-t: 0.158\r\nx-c: 0\r\nexpires: Thu, 25 Sep 2025 21:38:45 GMT\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YIq0o%2B3xYo6rV2zlAaQwrKngf5aQWPVPxwhWQcT7HXQgxa9k86NP4dLR3XQoYbSAvC8oBHrqvFNY2dMIfpBtB%2FXKAAd7W5ySZ6Q%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 984daba08dab56bb-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with no line terminators","md5":"843f568744d40d9ba44706c4adf5794a","sha1":"a9a33df1ff9035b416d048dccf1bd2cf11f1548d","sha256":"dfbd0bf2a174e29afe08fb9e0a42fd120d834566e24bf83c5f780f8b020eca22","sha512":"915a2d2219cdbecfcce6b5f397e4b54bea00ec6241a69df4502004612858b131357e146e441e11757c37a74245f53f28dd1a182c01c34fb44bfd11e9658f310b","ssdeep":"","tlshash":"e790022964e584251fc9d740155a12844172039025c052998531592421497c0965f9b8","first_seen":"2025-09-25T21:39:10.745668Z","last_seen":"2026-01-31T05:28:08.747607Z","times_seen":2,"resource_available":true,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-25T21:38:45.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dogrugrisadresi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 25 Sep 2025 17:44:11 GMT","end":"Wed, 24 Dec 2025 18:42:25 GMT"},"fingerprint":{"sha1":"0A:7F:DB:00:A7:03:95:DB:79:02:2C:E1:2B:81:BD:42:2F:D8:C1:00","sha256":"29:B5:CD:15:1E:5C:BF:4F:C0:C1:01:BF:9D:47:7E:19:E6:ED:C2:72:82:06:04:88:9D:6E:B6:50:18:CD:6F:2D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: casibom.dogrugrisadresi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fedbB5rIGWQ%2B19qIXRk57bLAQGI%2FMPxVpBe%2FSvDArk9F5ttgt4yRCocISEAZcRVlzT7pA8h7qUseN9BSWv9xmvnqWxuPEPvIFQ6J2x%2BvFAJt5%2FrpPFWYtuxU3Q%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 984dab984e445ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":22238,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (424)","md5":"b66ad8a44b9d0df4fee3b1f98a7d905c","sha1":"3a1ba521123f5bc7d69df7519361655008dbc9a1","sha256":"f350e9061f44bc1ed384f63dbbe71ce5d95bb9fe02036c430d2e8f9c0e54011f","sha512":"572d199c6639eb6d6ce45496bb6f2465e0f09fe9451c96894ff651270485b76e5cf00945e473fd02a7063baece14f548c6de497f3c49e79d62f0416c8b4d084a","ssdeep":"384:elD9mV9FHy5nV2eU7zm8Nj5zfqgWICXoV:elDcCumojpZWnXQ","tlshash":"3aa2f987a9f3310e6227c6cedb93bb1d9eab8217c125cc19ba9d42186f845558cd3b0d","first_seen":"2025-09-25T21:39:10.747499Z","last_seen":"2025-09-25T21:39:10.747499Z","times_seen":1,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":22,"dns":1,"connect":1,"send":0,"wait":188,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"casibom.dogrugrisadresi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:45.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:49 GMT","end":"Mon, 01 Dec 2025 08:36:48 GMT"},"fingerprint":{"sha1":"9E:38:51:02:B6:22:9C:08:6B:24:B8:A0:EB:DB:60:D9:27:B2:68:90","sha256":"67:AF:7E:56:AB:8D:96:FB:D0:75:CA:28:6D:16:B6:67:FD:7F:58:6F:CC:AA:78:B5:01:13:76:2C:AB:BE:80:4E"}}},"request":{"raw":"GET /css2?family=Poppins:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 25 Sep 2025 21:38:45 GMT\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4792,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"4313e6367844adc0cdb4d6ccb86b26fa","sha1":"20335f134c7817c1e9d01f8c57fa2a36669af65e","sha256":"d6a90916411b5b4b696edaefd46fd4503e5bc622c14e490a09cf0de39696d418","sha512":"23a3392e96d2bb29dd720e4e65ea2e398651f8e7626361425e932732f1efa52dc14dbcbe5751ed7137e69916480f3fd2be5ebf4ef39a43c6c6200c9e777c7779","ssdeep":"96:SOEanOEaCJc+ukOEauN3OXa3OXavJc+ukOXaON3OxMacOxMaUJc+ukOxMarN3OpQ:lgKQcXr3lVwa3RzJZ","tlshash":"f7a19bd1087be114ab831cc123ce7d36ee1e9255b810e5786bfd0c98adabc654362b2d","first_seen":"2025-09-17T01:34:36.284919Z","last_seen":"2026-04-04T22:08:45.742603Z","times_seen":5236,"resource_available":false,"data":null}},"time_used":435,"timings":{"blocked":199,"dns":1,"connect":23,"send":0,"wait":31,"receive":0,"ssl":178},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Rubik:wght@300;400;500;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:45.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:49 GMT","end":"Mon, 01 Dec 2025 08:36:48 GMT"},"fingerprint":{"sha1":"9E:38:51:02:B6:22:9C:08:6B:24:B8:A0:EB:DB:60:D9:27:B2:68:90","sha256":"67:AF:7E:56:AB:8D:96:FB:D0:75:CA:28:6D:16:B6:67:FD:7F:58:6F:CC:AA:78:B5:01:13:76:2C:AB:BE:80:4E"}}},"request":{"raw":"GET /css2?family=Rubik:wght@300;400;500;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 25 Sep 2025 21:38:45 GMT\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10504,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (649)","md5":"1c44465638b37cc74fee4ff2f51c175e","sha1":"b5e0ab28b50ee27e7dd6f95cdcda038f7f53606f","sha256":"0cc26cb403be22c96d0ebb25339d5751220fcfe748391bd6c27688f2b33d1df1","sha512":"1421f1836d2da3d4018e98b93f4fb929c23cb6cbfbdece5afd6fffbd0d08e03b93699d6cb6e0a52fcb610f0390c47fbedf5dd80b97c092fdf78181a0a1c26f67","ssdeep":"192:shClRsprgAHThCl8s0KtAuMhClDsb5uAt1hClGs+ALAkp:vlSOlHRlgwltn","tlshash":"4022bae0481e5040bf472cc263ce6e27ed0e62553490c52d9afd1b9aacbbc2233657ce","first_seen":"2025-09-12T08:35:02.115037Z","last_seen":"2026-04-04T15:21:21.305397Z","times_seen":146,"resource_available":false,"data":null}},"time_used":419,"timings":{"blocked":189,"dns":1,"connect":21,"send":0,"wait":32,"receive":0,"ssl":173},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/casibom.png","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:45.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dogrugrisadresi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 25 Sep 2025 17:44:11 GMT","end":"Wed, 24 Dec 2025 18:42:25 GMT"},"fingerprint":{"sha1":"0A:7F:DB:00:A7:03:95:DB:79:02:2C:E1:2B:81:BD:42:2F:D8:C1:00","sha256":"29:B5:CD:15:1E:5C:BF:4F:C0:C1:01:BF:9D:47:7E:19:E6:ED:C2:72:82:06:04:88:9D:6E:B6:50:18:CD:6F:2D"}}},"request":{"raw":"GET /casibom.png HTTP/1.1\r\nHost: casibom.dogrugrisadresi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Thu, 25 Sep 2025 21:38:45 GMT\r\nserver: cloudflare\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/html; charset=iso-8859-1\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nlZG8kK6cHeTbO2oNuiq7U0Ygs5K7uxdG6CTOLHJ4U6ZTy0wR7KboTd3lCRT7NG8BfeqxpWfE83lyMs%2F%2FyOaw3XxRJfqWKT3EK4oaQ7mqj9mUHuCRflpPNUC9Q%3D%3D\"}]}\r\ncf-ray: 984dab9b5fa332fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-04-04T22:47:30.729483Z","times_seen":143742,"resource_available":true,"data":null}},"time_used":187,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":186,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"casibom.dogrugrisadresi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"casibom.dogrugrisadresi.com/favicon.ico","fqdn":"casibom.dogrugrisadresi.com","domain":"dogrugrisadresi.com","tld":"com"},"ip":{"addr":"172.67.155.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:46.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dogrugrisadresi.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 25 Sep 2025 17:44:11 GMT","end":"Wed, 24 Dec 2025 18:42:25 GMT"},"fingerprint":{"sha1":"0A:7F:DB:00:A7:03:95:DB:79:02:2C:E1:2B:81:BD:42:2F:D8:C1:00","sha256":"29:B5:CD:15:1E:5C:BF:4F:C0:C1:01:BF:9D:47:7E:19:E6:ED:C2:72:82:06:04:88:9D:6E:B6:50:18:CD:6F:2D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: casibom.dogrugrisadresi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Thu, 25 Sep 2025 21:38:46 GMT\r\nserver: cloudflare\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/html; charset=iso-8859-1\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UDcjjFnQacunPw8NSTuortvA3hWfZ5wyODvUXn14HjzHvQW%2Fxn5taVxO%2BSNGyCVq2pE8vE0e4hepeQfMbYw3BdTnTvyVmboaNqqSmp1mNtroKoEYMIFk0LDVxg%3D%3D\"}]}\r\ncf-ray: 984dab9dbfcf32fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"a34ac19f4afae63adc5d2f7bc970c07f","sha1":"a82190fc530c265aa40a045c21770d967f4767b8","sha256":"d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3","sha512":"42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765","ssdeep":"","tlshash":"b0e0e75f41473347402252907dc110d1d505236b797161fd3d85b4ab501dc3dc99f7dc","first_seen":"2023-03-07T01:02:33Z","last_seen":"2026-04-04T22:47:30.729483Z","times_seen":143742,"resource_available":true,"data":null}},"time_used":180,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":179,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-25","alert":"Sinkholed","trigger":"casibom.dogrugrisadresi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"t.dtscout.com/i/?l=https%3A%2F%2Fcasibom.dogrugrisadresi.com%2F\u0026j=","fqdn":"t.dtscout.com","domain":"dtscout.com","tld":"com"},"ip":{"addr":"104.26.10.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://casibom.dogrugrisadresi.com/","date":"2025-09-25T21:38:46.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dtscout.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 Aug 2025 12:11:28 GMT","end":"Sat, 29 Nov 2025 13:05:40 GMT"},"fingerprint":{"sha1":"8C:1A:8B:5A:0D:05:D0:E1:27:9B:25:7F:4F:AD:2F:0D:B4:F7:E5:14","sha256":"6E:3E:4E:99:17:89:21:6A:AA:63:31:A7:CE:8D:C6:4C:29:96:63:AE:64:9F:42:19:D7:28:92:10:03:EE:8D:75"}}},"request":{"raw":"GET /i/?l=https%3A%2F%2Fcasibom.dogrugrisadresi.com%2F\u0026j= HTTP/1.1\r\nHost: t.dtscout.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://casibom.dogrugrisadresi.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 25 Sep 2025 21:38:46 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-s: mtl2\r\nx-t: 0.451\r\nexpires: Thu, 25 Sep 2025 21:38:45 GMT\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7ZJHEsIAr3fdA08sHm81nUvwYDAah0X41U98bSV2sIrk1nOTPp2qoy%2BYNJTjmEhy0VyXLOU1WFfvCBavVvjiqvYAf2GDH4x%2FvOk%3D\"}]}\r\ncontent-encoding: br\r\nset-cookie: df=1758836326; SameSite=None; Secure; Path=/; Domain=dtscout.com; Max-Age=8640000; Expires=Sat, 03 Jan 2026 21:38:46 GMT\r\ncf-ray: 984dab9ecc4a56bb-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2079,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2077)","md5":"51bd741af3fcc4984d1a753eebfa1141","sha1":"534664acf69cbbb5c9b97c96b63dd37bdc580da2","sha256":"3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c","sha512":"14958b02aed15cfa48facbdd8e8752ac7d1220631fb6af7658bcd5b804c0be52f9555a1d0ebe0bd68ee3a5f60164d97cbf020884d8757afaa3297d0768ab8886","ssdeep":"","tlshash":"0441a70bb5e9347813a2007a55ff235fb2324928ac1788c08196d804bc785faa1b6ea6","first_seen":"2023-03-07T01:03:00Z","last_seen":"2025-11-28T22:34:42.368027Z","times_seen":7807,"resource_available":true,"data":null}},"time_used":521,"timings":{"blocked":144,"dns":11,"connect":1,"send":0,"wait":231,"receive":0,"ssl":130},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}