{"report_id":"f85bb8a7-2f60-4c65-ae88-c46ef2cadfd7","version":6,"status":"done","tags":[],"date":"2026-02-01T19:14:45Z","url":{"schema":"http","addr":"rastaroyesh.com","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":0,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"final":{"url":{"schema":"https","addr":"rastaroyesh.com/","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"title":"دموی فروشگاه گیاهان – یک سایت دیگر با وردپرس فارسی","dom":{"size":265859,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832)","md5":"f33bed51cef73fc5081a10a7fdfedb96","sha1":"e35a964d888ef223701929f8a0a44f46ca22a403","sha256":"346b559551e0b43dcd166e0885329a59f2e5eb2645391af0b8b9afc4fd79985b","sha512":"49e006749de1277dbe94299bc78d1b152c51a625fd66e3879555f1b9f160b585912d2fc83e9ff94b5503c9f91ee22f45a2effea8ac82ffcaa60a3bb6d8c59fbf","ssdeep":"6144:YW4IXUc1CT7Cv22Dz9qHGfHpJ3CtTfypg37t+fHpJ3CtMiPMGv:Y/c1CT7C1zBkn","tlshash":"ff4484a2765e583b130701cfa0413f4ea69f8e3adab9a0f5b3fb054c57a5d9236120dd","dom_hash":"domhash47cd9dd787e996948aa1e1a412e1f069","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"rastaroyesh.com","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":0,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-08T19:14:45Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"rastaroyesh.com","ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"domain_registered":"2025-11-04","domain_rank":0,"first_seen":"2026-02-01T05:36:29.396439Z","last_seen":"2026-02-01T05:36:29.396439Z","alert_count":252,"request_count":63,"received_data":2290465,"sent_data":36621,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Underscore.js:1.13.7","description":"Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.","website":"https://underscorejs.org","common_platform_enumeration":"","icon":"Underscore.js.png","categories":["JavaScript libraries"]},{"name":"Gravatar","description":"Gravatar is a service for providing globally unique avatars.","website":"https://gravatar.com","common_platform_enumeration":"","icon":"Gravatar.png","categories":["Miscellaneous"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"imagesLoaded:5.0.0","description":"jQuery plugin for seeing if the images are loaded.","website":"https://imagesloaded.desandro.com/","common_platform_enumeration":"","icon":"","categories":["JavaScript libraries"]},{"name":"WooCommerce:8.7.2","description":"WooCommerce is an open-source ecommerce plugin for WordPress.","website":"https://woocommerce.com","common_platform_enumeration":"","icon":"WooCommerce.svg","categories":["Ecommerce","WordPress plugins"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"Elementor:3.20.2","description":"Elementor is a website builder platform for professionals on WordPress.","website":"https://elementor.com","common_platform_enumeration":"","icon":"Elementor.svg","categories":["Page builders","WordPress plugins"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Magnific Popup:6.4.0","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"WordPress:6.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"uka.3sz.ir","ip":{"addr":"185.78.22.80","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-01T05:36:29.39916Z","last_seen":"2026-02-01T05:36:29.39916Z","alert_count":0,"request_count":4,"received_data":78261,"sent_data":1697,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-01-25T22:25:20.721908Z","alert_count":0,"request_count":1,"received_data":129763,"sent_data":448,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"secure.gravatar.com","ip":{"addr":"192.0.73.2","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"domain_registered":"2004-07-15","domain_rank":16323,"first_seen":"2012-05-22T05:36:38Z","last_seen":"2026-01-26T06:45:54.636372Z","alert_count":0,"request_count":1,"received_data":1559,"sent_data":514,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-25T22:17:37.642954Z","alert_count":0,"request_count":1,"received_data":118865,"sent_data":799,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/dist/hooks.min.js?ver=dd5603f07f9220ed27f1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"90e932bd9e62583fc494c00498cfe7f5","sha1":"4f57e11bff609f90f49174187a0b5a6ba847ad28","sha256":"87cee5f49ba0d3017efc409579fc58b91a717f8f14751f7d804447ac9bcbaf4b","sha512":"ed9c129faf972ddfa705f05c3207884e5e9cd175baa45d49ce9d42bc0d01e4e8f36e627731bdd97214b1e2400fdd5012262a42f9800cd4f5565dbf183ba58507","ssdeep":"96:wXDE/3s/0EBM6ZUUCRTH+zl4NsBjcEmDtrGV2C2yics6w1RfGdzsvqZTq:wzg3kBFZYH+zhjngRw2cLzw1RfGdzsvx","tlshash":"56c153847983b970b2337057f0ff48d561baeba575298081964ec4a05d7388ee0a7abd","size":5661,"data":"","first_seen":"2025-10-27T08:47:54.273294Z","last_seen":"2026-06-14T05:34:55.507336Z","times_seen":195247,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"e56bc891d47a0687c80dbe086a5b1e90","sha1":"a9e643e186e62cbb3f0e518f473b8702c2945802","sha256":"4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba","sha512":"869cc24f825e325c494d3b81fd7a8803f1c4b417f7db3b9aaa9aad41cca90a910a898f9136ad5468828cf9c0a78416b3a599fb32b1fdf15a0bee55bc62651698","ssdeep":"","tlshash":"5e5171ceb122f07247e62981a41bd6865432287af19aa4fc308d71d58f74a066463f3f","size":3058,"data":"","first_seen":"2024-01-21T00:01:31Z","last_seen":"2026-06-14T03:12:54.6352Z","times_seen":9999,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"6d3b3d63df025e97f370c5efab2c96da","sha1":"78c0c8e7504f9314b2e9fd714bbab530af52f2af","sha256":"8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6","sha512":"7db4d14389ee9e1439365b029b967db05e929e3e8773967d636bf08cec654b30079c1b7dcdde720ce5b8be8694a2ffbdc610f25e537c1954f1d067e837338fd6","ssdeep":"","tlshash":"df412127f4322d3261ff96b56c9eee442923063d48104101b569cb2c357a8c7667bf3e","size":2139,"data":"","first_seen":"2023-08-09T05:33:46Z","last_seen":"2026-06-14T04:07:50.946793Z","times_seen":14134,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"691a1e43450e7cda541a3bd6f10fd5db","sha1":"d3a78cb77ccec297c9d32fee99a2a4761f604a8c","sha256":"8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1","sha512":"a32ebe942e704da64381e392ffc20ed4f9d8daf71227a06f2dc0ca5c037675ab67e5b5a5ddf9bcb77b1872308daa780cc0e6ec5a2469bcd51444ece4f3b3de0d","ssdeep":"","tlshash":"c031b6d93095a8da06071490463f1207f2f91e27eecd98906264e8f50ab077a01ebf6b","size":1720,"data":"","first_seen":"2024-03-20T13:06:17Z","last_seen":"2026-06-14T05:36:08.500219Z","times_seen":134225,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"af44f82a13e50f4ab09a194247ac71bc","sha1":"e1c921fa718e918e70a25cd278a9ff5b8be9c2bf","sha256":"881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9","sha512":"aea9f345962ee018693cd6dbd7b9e2647fb9be912d9a523970b156433db0e4dd8291d85253da2f67463e4c38a3c17203971b5009ba0dc4ce5d69e532831f7a66","ssdeep":"192:00oFejLIcYEmCha3RT6fiwMXPNfjRPqQ9gVtvO9b73iAcUe3pfpVnrpN5:1oF+dwRTzRSouq3OVpVlX","tlshash":"5852e945b861103586a121ec182f514e627add37e2b46824ef2c94a93cbcfcf50bbf6d","size":14500,"data":"","first_seen":"2024-01-10T00:29:36Z","last_seen":"2026-06-13T12:32:45.068218Z","times_seen":7018,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/woodmart-theme-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"62d2315818e87ba5f063399e3dc71909","sha1":"281955f5bf6e833b634c2cabb6daea55e0bcfe45","sha256":"2151db1d4193c03880973c719414572cb28fd02b22da89a1ad4dbe82f4977494","sha512":"722e224193ddf399cddba778ca938262006095fd49ade7f4a2dbcc7a648c42133acb7c7ac5472b2baf5f0b8527732ddc344cff9d4f8fc24bedcef9297bd58eda","ssdeep":"192:eJEcD1yxyxjni/jE7ecZb/WEgm1eM64n+Yz5/89:aQxEXuMk","tlshash":"6d3264e5e72da52e2a1fd871dc76facc78982a84d05b9030bfbe6f49c390100559936f","size":11932,"data":"","first_seen":"2026-02-01T05:36:39.419853Z","last_seen":"2026-02-01T19:14:50.231168Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":true,"md5":"5488621077c8a0e4bea595e0fc15cbfe","sha1":"091c45d8129595cfd627deb051410d2e8d28dbb4","sha256":"e70b217d81924fe6842992645ad5f2ddf964d9cf0f713fecf6698a64eb75561b","sha512":"e70da40d7f6d538f9bd2116fcf10c1347d84f7239a2db877f8c49bfeb3d125cd69479005848eaaf77e88d7616f38950cbcc3041489f2eb486c126612be4c1d45","ssdeep":"","tlshash":"61c0c0b55f261730271c446038a0e30eec38482dfc22e176c08f0c0c30e0fca0400e40","size":186,"data":"","first_seen":"2026-02-01T05:36:39.41604Z","last_seen":"2026-02-01T19:14:50.233184Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87553,"data":"","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-14T05:33:28.402974Z","times_seen":905694,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wd-update-cart-fragments-fix-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"266aa26608020c7b7a04bc12c78fae3f","sha1":"454d8d9a0c0c636b481c2657d61fa1e650972fc9","sha256":"6756166c23015585d3990389f38f7b50be8f2458ae8eb39e46d6089031152155","sha512":"12633be7899619fa15164fca37e548b475cb19cb9e52f8822442391ef3d1492fdd2805c33429dc8d846bd11391c06a5c4ac10bb4bfb89eda03fe3951c91ff4f7","ssdeep":"","tlshash":"84512647c7d6ddeb28eb2cf621613577f2a0a2a6e1e40d02220e6ce40a55f55c981e1e","size":2763,"data":"","first_seen":"2026-02-01T05:36:39.427426Z","last_seen":"2026-02-01T19:14:50.235272Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wc-cart-fragments-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"71832966acf19b7cce8abf9632b794cd","sha1":"de5f97ae7e83a182aa1d8705d5bb84dc56e6913c","sha256":"74297192c948e91c396f2843e494198f43b609333f4a34c706e7b975784440ed","sha512":"0d3bf52208844400f2da0b56cbcaa95c2f3e026d7324040f3b61d0c062762d7d9be1f3b383e0158a677ba11380f118a37a8b63f0e7620479a159d8cd949993c9","ssdeep":"","tlshash":"35512647c7e59dd728d91cf221617067f2a461a6e1d40902224e6cf80a95f01c581e1e","size":2817,"data":"","first_seen":"2026-02-01T05:36:39.417884Z","last_seen":"2026-02-01T19:14:50.23712Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"ae52867db002b2f95a21b85b3b518a04","sha1":"4b1615786f2e5240bec4229c7dc5c6f865c92ebe","sha256":"592acc60b8eea94fc366110175d8406604a609201d6debe5eb008a6debfbdc3b","sha512":"cb641d54680e78ff8f575ca1746319f42acba15c3422bb40f011421545ac0647cad018635834fc9ed553c7a61e0789d329c18a774d1dcd5fdb52d207e69768cd","ssdeep":"","tlshash":"7551321fb0208e9618b3187e613a719622329d69f2098670a015dca42eece4b1777dcf","size":2939,"data":"","first_seen":"2023-08-09T19:51:14Z","last_seen":"2026-06-14T05:33:28.447102Z","times_seen":54928,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/scripts/combine.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"6b9f776e1c5eb610d476636d847a3449","sha1":"615760b205269ea393081e0b33ca9f87fa2f188c","sha256":"26a82f058407e4cfcb375110cf32abfaf190e2e396e0c739d152c4b9189453f1","sha512":"25f87225521d7c57308673e7caba764597b0d645aff8ea874ac89ad7ee580bfdf17b156462b79573222bf488cf2eef1faf65b6110dcfb6255f8b2c3828695733","ssdeep":"3072:xjnx8bvPrHm778bjKYrAUr2zmO6aS2ZjrSCZBLPip8W8eJhdtJB/jq:ts/KIrx0vSCZln","tlshash":"80f3a894f42b24ba1d6b3ce5905ba5c9787277254e238067906ee0ec097cd851337efe","size":168012,"data":"","first_seen":"2023-09-21T14:01:05Z","last_seen":"2026-05-06T13:54:22.187084Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/device.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"827184d6724506af8ce63b614335ba4f","sha1":"2bb122ae3e7986ed81e2074b65c9c73a13f96097","sha256":"47642ad5aa5fea1a6a42e2c41bcc5ffc270e41881b1a84eb4be3689a619d3c36","sha512":"07b4e97cd6465742f47200607246829cde533fd853f94cf700873d00b9612b775b58479f36b8aeeb3c9191f7a44f0e6e38902fb9a7593703c38faff6ddd9a4f5","ssdeep":"","tlshash":"cc513084087618b759316b6150af3f6757229a19298f65aa91c22c0cfdf2f93207fdf1","size":3151,"data":"","first_seen":"2023-03-07T12:04:08Z","last_seen":"2026-06-13T23:07:27.524369Z","times_seen":1162,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":true,"md5":"fed7dd6f071a5974f08f55349c562263","sha1":"84fb8204984351f10b2cf6eea10335bd0f16cdba","sha256":"9b5eadb6aef7a2767d4f4fefb4a2796ab29bc2612dfeb60ef32407b9c6cca229","sha512":"11a032354a395222ae8571e04fc44a04e79daf0dec00480f815bf2ea76840748310e283c26417c587538b070efad89ddd79fc0117d873c92f7d888112c142111","ssdeep":"","tlshash":"e4d02bd552daad9373e66edc210635f3b0e11507e99d88b999ccfc8c2f20d81c90454f","size":289,"data":"","first_seen":"2026-02-01T05:36:39.422051Z","last_seen":"2026-02-01T19:14:50.239125Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.20.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"fa18c242d01e0ea9f55f7410ed1803a7","sha1":"83ace9932da95e2728f862e124e79726561f6f3b","sha256":"2a2f6696cabf9e52f1853bc7067bfa0e9b483e5e91888deaaef1277db88da7b9","sha512":"ed8da3e0f63351afa04384163147054f634773bda3ddfc6b47022a2a50272ffb00d0bf0a74075b0f53320b179e59c314082a47cc1974f3ad7ec1d76098b33d07","ssdeep":"96:BYsNt0jqf9fzI7pf8FDwlCjNVobVDPkqflkxwvT8S2:qsNCjw9fXFDdN4FPkyXgS2","tlshash":"12a130d41b90fc6735e135c9a11aa731752fc0333d1ab8c1fa22dced98e8a9187a9931","size":4997,"data":"","first_seen":"2024-03-20T22:15:30Z","last_seen":"2026-06-12T01:34:36.955901Z","times_seen":405,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-i18n-js-after","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"fce76a62110cceed68233e468883e785","sha1":"ae2a8164c70ad957f0a6343984717feb6ded0862","sha256":"6e9d3e6606583520b5b0e869dffb9b5b1e16f97a901556e610faa74d85dac729","sha512":"4d972eae6d8873cc8878ca120f2c1612a1d6adaa2c0826b57e8b458026e596b4427ed1200385cb6c33a11dbc44bdc86440a703255babefebb2b84adeba066480","ssdeep":"","tlshash":"1b512b82f0963c80414b9a701a63bd024441208bc17d88042499ca206b724c0f4c231f","size":2566,"data":"","first_seen":"2026-02-01T05:36:39.429222Z","last_seen":"2026-02-01T19:14:50.241129Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/elementor-pro-frontend-js-before","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b0031c45e828e0172b386e83e804a193","sha1":"f72fcbf95baa015a7275177f817422a1f682891a","sha256":"d37cdba19c8711b4f1c22b94611fbb79034c9f92ab4a6b8f576a8b5301cb2786","sha512":"9eb85b10c01998ce6d6b79e81a1e92ea0e24d97f3a27ec22d066a7f1182eeb522790106401c9c86d896d36a6e68c3847f18d6bdcc12101689c500837bf83848a","ssdeep":"48:HDAti2hbcov+Y3HcmF7DAti2hbcov+Y3HcmFMm:HqNcovusqNcovujm","tlshash":"e2b19b56fe234e10579ea6f471ca3a6f88d50232e9c4b4ae16ced46401f3d9df0492eb","size":5299,"data":"","first_seen":"2026-02-01T19:14:50.242979Z","last_seen":"2026-02-01T19:14:50.242979Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"3819c3569da71daec283a75483735f7e","sha1":"ecd40a5cc6f0b76200c454ca880210dc301cfab8","sha256":"214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0","sha512":"2710655dff46653daeb3a6e3f6d36f885e51d5b375738ee353aca40c6f66ae1a7dece57039d58747012ed9ea2822191143c06f270123b8cc580f6a41b8e8aef4","ssdeep":"192:GngaW9ELBD26z861V/CvJiVKIsvfT+6EdpEsBpP9Qwo7Q4a99RfuzqXppc4mmm9t:Ggz9kBD26861V/wsVKIsvTEdpEsnmwoz","tlshash":"994221493e0724222faf41f9fc1b468a632b013894c584bbb8e4d5dd18f19296f77b78","size":12198,"data":"","first_seen":"2023-03-07T01:02:08Z","last_seen":"2026-06-14T05:05:19.942007Z","times_seen":70732,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/owl.carousel.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2b1954e15f96d7bb809ea5c8fb1c873","sha1":"3b3c4a5e87400f1bf087eeb5623c89511902d962","sha256":"50da9a9a9465d794f53793f9329b8f7f8976362ab44e59ad85774a62277fb9e1","sha512":"374ac22ac024dcbaad974db898a977eb795a1c9ddffcd436846aaae997b8eda05ea64c8f7171d072274d7d018af39b53bcd3d6458ba536797d1456053e75d563","ssdeep":"768:XybkMF52/mO9hA5nmyndwuel12I/de3VhgncT15BTJ:XakMFh5SZncTtJ","tlshash":"58135145f3202c2a469b51a0663f160bb23b251ce506506d7978eaeeac7dc4d312fbf9","size":42452,"data":"","first_seen":"2023-03-07T12:04:08Z","last_seen":"2026-06-13T23:07:27.505386Z","times_seen":754,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"80412f3abc385a74ddd5a73046f8b797","sha1":"205cf1b62c43c5d030ca38975a493212c4a0f391","sha256":"245c58a634c44c46561a3c48f7aedcbd8e29ec135faa95f6f73e3887bab39aef","sha512":"4aad56a2f1c21c7dd9244987c5f734d27f274754ad249e7bb79b39664f41b9448298d47d86eacac4b7bd53e7402b5c2f1ec84eb34f7dd9b8e1aace3556366306","ssdeep":"","tlshash":"10318dd7fbec004688923c277e3610fdd13e9471eb9804fa6c1569b82768d98831ad6d","size":1632,"data":"","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-14T00:50:39.905834Z","times_seen":1665,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/wp-util.min.js?ver=6.9","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"19d386c9004e54941c1cc61d357efa5d","sha1":"0a77594006c8d86fdcc0adbc2b9aecaef3869586","sha256":"3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95","sha512":"7811cf6babb4df41707f97d1bd65337b5ad7aaedff301fcedb90fb7773fa9876f52458aa03a576910f6126384599ef25f8de76ee309c22e1914d9cf444aefb6f","ssdeep":"","tlshash":"ed21795a7175a9f311333479c23f0207f332e4145a168951e489c4f19d70d8be5b7a19","size":1426,"data":"","first_seen":"2023-03-08T14:26:29Z","last_seen":"2026-06-14T04:45:10.802032Z","times_seen":100161,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wc-add-to-cart-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0cab91a310d46c0ca982a71063ed3396","sha1":"b67810713c7ea471ccf1527217e488273cc2f51c","sha256":"5cd3c87fbaa91c6cc313b232b63a78ab9fb1759e7a77dea760107578f2c19513","sha512":"f846ce097e7708f2c6bec8cc53ef305d108fac3d076f487d75e9cf15bc731e6a74cf800c507a2768bd11f7f599d9ef47d1d9e8e10277cc213618e1cc367ad653","ssdeep":"","tlshash":"b6e0c295d2daad9363e66ef8210635e3b0e11507e9ad98b999cdfc882b20981c90454f","size":337,"data":"","first_seen":"2026-02-01T05:36:39.423559Z","last_seen":"2026-02-01T19:14:50.244789Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/special-offer-woodmart/assets/js/plugin.js?ver=1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"ebeab00ef8613052b0c5d1a1d6b08240","sha1":"e403f600d24b37e8940cc69da89862dd03f7ca81","sha256":"cf19f105afe0bd1f5d015a32f981f9388b4492e091fa7863d8265cfacda7f0d9","sha512":"9ad740f759b7dd7db3c7c33d567740ac526b583757014d038621da6c5a733dd25e36964e99a3a09436152757d3d0eab38463465cea2cfbd3e8b06131cb26f816","ssdeep":"","tlshash":"9761eeb5a01e20761eb3f72ec92ba720e6f2b7531949a5b33dbc06149f32045119bedc","size":3244,"data":"","first_seen":"2023-11-11T12:04:25Z","last_seen":"2026-02-18T03:04:25.606248Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/woocommerce-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d1e172017b2fb42a37dcbfca02264a9","sha1":"3c4eb03023390eed60afe8a4ee5784dfd694a96f","sha256":"dfcfc4082d95231cbf06977f0126b19b406ac406bd8756d7dcf1d85495265b84","sha512":"30f610be257f12d15505b89c0e0dccd93df7d65f7fcbc5df1722bc7b406a0cfde032dd15a1353a34a187f7fd63793197a79372f51656e56673e9d9d160766ccc","ssdeep":"","tlshash":"a3d01246c0d55dc322e83cf42554256325e1610af5600c111e4de5981965881ee4434b","size":223,"data":"","first_seen":"2026-02-01T05:36:39.425446Z","last_seen":"2026-02-01T19:14:50.246643Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wc-add-to-cart-variation-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"90452c16e726214c2b05c34e7f1e6ed1","sha1":"1ac4978645c02e6146c186853a38381078f56697","sha256":"abd270c7378add4512eb487bcb086ab19a6a5d7a9a6a531693e4f7fc15601198","sha512":"9e54f6445841ef5e710bf4486bf7a1ff0934900d0c3ba27dbd9e0137607a06d54270d21f059d7d2201b8809d6593aef1c24e1d831a33e7ba3567ec675f1c85fe","ssdeep":"","tlshash":"7d519ed4c2f67813624f18b710c91a85b9358109e2505065fe4fdbc927238c4d30343f","size":2959,"data":"","first_seen":"2026-02-01T05:36:39.430774Z","last_seen":"2026-02-01T19:14:50.248509Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ac19265b38d14235141d184bca54d9a","sha1":"c725eb5a33d093e331e25c3a5ef1272b0f1f648c","sha256":"e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e","sha512":"6476ae51cfef0724ba254cff1e5d68f2cda477840954b01b933f1c9608ed6ca5094fe006d5cef7e5a32d54b25fb4a418a3e2c3eb642bcafa0d6bebaacbeac21d","ssdeep":"1536:O/pPCitsufJthaK85kqzOAkRlojU6tU8r5MhkhGllpcXvH7WcWUKcOqylFE8BtOa:+JthJkOAkaRaaGl4fH7WcWUKcOqjtYD","tlshash":"2bc31849b35071e551e72256539ed601a3b66845b90ac0a831b2d8d7acbce8c03bfffd","size":128745,"data":"","first_seen":"2023-03-07T12:58:52Z","last_seen":"2026-06-13T01:56:53.173083Z","times_seen":2394,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.20.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"0e871210a406aa5d5b766e28faa44834","sha1":"98dd24feef472e3c69a158a294bd0e83aeb54a1e","sha256":"9af77ff87c6e8ee5446846ce801c3adaf9ea87f66bab96a80470b112ed5a32ca","sha512":"ee59a1084e8f73ebd9582c9a4dc0cace991b637e9419367de6565cbb4daa3ea5dfa0289d7ac9ba11736996afbedf1894f2753e2de96e7b812641e2e1edf19975","ssdeep":"768:hTLX+EVxFm6cKibdndptaQ9HuGJswyC/pkTAQYtDT6HJiwknOsN7KOljuOzQYqER:ltVxFm61ib94Q9HuGHiiwkOsN7KOljuy","tlshash":"43b2d9063153a87a50cfc15be067420e7b3748857405b0ed7abc6ceba5b8d9a33ea335","size":25066,"data":"","first_seen":"2024-03-21T13:11:23Z","last_seen":"2026-06-07T20:46:26.132465Z","times_seen":347,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/magnific-popup.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"129e177fdf40035068e59e08414ca09b","sha1":"9c40bd43c3cd967703909d3fd5af316498dccb1f","sha256":"a76f5806e54434685f67e97bd8759abdec42dbc51ab2f6302d1fd6a8f14d6caf","sha512":"902e19245679f7f49075300c2fb229324e9fc127a40377e5c93e6f25cccef3371e98b9e58acc67d2f317a0f838d60d5fd60db5859165024c116600c8780d52d0","ssdeep":"384:p8tbbBOhcIn82lx2UCTqypHpG578aLdqw/sdi2hbsiuLA8MjsMZZ:pgKl8NaBLdqwEion+qn","tlshash":"0d922ba4f1a1b27387e360b4295f382c36369923cd06c402756598e85df8fe99227f7d","size":20636,"data":"","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-10T23:40:00.236991Z","times_seen":564,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.20.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"b1bbfe6d76282de91b928c20a7eda986","sha1":"2e117329976320b2dcbc120d27c61f207fe13e80","sha256":"b436b03c84fb39a3cb9f9bb41f590e03658e15f504a4ecd2d30130622f7d61a7","sha512":"d834ab892cf6574a8373a4d31dd7a46a763be44d4622e714ac8487145386006860d284a41458699f608da6624b6f6125d9b8fbad0d4ddd0b100cfb1f685b6f75","ssdeep":"1536:LeAjA679C+QRCHXC4WHqMPB8Vx8WXwCDFYNIekHeBHmjkfzRNE4cR8+Sxp6xID1x:Td97W/Clkbx","tlshash":"8f43eb863251b4e70bef40eb602b450af32319e4740eb5987ab8ddf66470d5a237b739","size":60168,"data":"","first_seen":"2024-03-20T22:15:30Z","last_seen":"2026-06-12T01:34:36.953387Z","times_seen":405,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"c3825b9d2bb7e067a90db543db343f68","sha1":"7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa","sha256":"70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504","sha512":"88c89ccbab7f6d24028e465e2011515f95558a472cffec1f859177c7953b3cf41c49885fa412d5acba36e775055bd9c488d5500d72a4026b07e8825a1697066c","ssdeep":"384:LruRTEkOxtOjwxjEqUDBs6idGMPx/OYcNK0lnDuQyFwT5QrOpF1D96hRYH:L/LGkdGMJqNK0lnDuQyFwT5QrOpF1D9v","tlshash":"c0523de5b23718537a6f11e7988f540cb135e83c6252c4b99c9ae7b3883ce446363b1e","size":13786,"data":"","first_seen":"2023-08-09T18:07:41Z","last_seen":"2026-06-14T00:23:05.950109Z","times_seen":5054,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","size":13577,"data":"","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-14T05:33:28.385995Z","times_seen":834301,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"d135f91be7d973a9f688aae99ae5b86e","sha1":"59c1a7ece70b5f3ded1cde917ac7991723964402","sha256":"9d8a587ab4a60001f720cb0833192cccd56e583a8df7774c292acb907d6078fb","sha512":"794838b164c35a0d1bec0f3953e22a538fc0ae93a518e7ec4a0f8a637fd8b8aa5bda8c41867257cf2b73b23e33f365f6e20d5a42af95f725cbf7189f4a0d29c4","ssdeep":"","tlshash":"9a3112257051e829cb7347dd7b9fa6013236b9163a43f404414c8cb43a72e2b7966c4f","size":1509,"data":"","first_seen":"2024-02-16T12:17:05Z","last_seen":"2026-06-13T12:32:45.109655Z","times_seen":2730,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/dist/i18n.min.js?ver=c26c3dc7bed366793375","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"3a5838d1182eb0b11f5a58bfe26e2529","sha1":"920b2291e65d62eb55c1958911768540abaff5cf","sha256":"d4efe709c65438ae90dff385486421fea45762880f21fc4e0dca3fa96210f428","sha512":"bc41d50cd2e5c17c75ba737c303f2f498cc94e2c3fe402b2f15c5f10531e53633598093da98579b2dee65733dce0f763d77380ae35a9591d8bf91f975b7c6845","ssdeep":"96:L9emIWL7lnv93ssmAeGejQVnmggoC7arVCG0GXF730IQRDdlZq+SxSD3LmD:8mIWZVszMuinmg3rQ8Xd30DDdlZq+Sx3","tlshash":"2bb157dcb9d57022235121a0597fb409f3357d6470ebb8006ba9c4a47eb15cfb1a2fad","size":5314,"data":"","first_seen":"2025-10-27T08:47:54.280246Z","last_seen":"2026-06-14T05:34:55.526368Z","times_seen":192379,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-util-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"4c11f78a852c676bace2119341a1b0a5","sha1":"654171889e945dd82c43c4fffdfcddabb64a08f8","sha256":"21523bb9b6d33133da6a3c3651eee7a3388078a0ab3c373e0a180711c6da203d","sha512":"d401648a6821778b08508c0c1701497785e1efeb282413a86fd108ba756a364ebba90e076463f6245c59399e5bc09f6da6e7830cabe109a4a91a87439c7b8051","ssdeep":"","tlshash":"0b512b88e4d52fc722d91cf66059a37715d0b140c0240c1516cac1510e21840ca84204","size":2595,"data":"","first_seen":"2026-01-05T04:38:15.762885Z","last_seen":"2026-04-24T23:51:55.190391Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":true,"md5":"bc74f1369aac3d8e0787cf31cb1956a8","sha1":"afed7f30a5ec0b4f1c6362f99e29f907523ff117","sha256":"1c5a2562f0762db9683547c9cdfbbef3c95cf13cd526018b887299b10dcd3b47","sha512":"1fdd30410bf8cae720d0653dfe93b56d94a65a26eed18447c83dc91b8613f616cadc2d9b3ac6845518d3a7198058930d6645c164d1646a0615f4d072b4f6e094","ssdeep":"","tlshash":"63c0804640d55dc333ec3cd43514356325f1510bf5500c111e4de59c1975c81ee4434f","size":167,"data":"","first_seen":"2025-12-03T00:15:01.662122Z","last_seen":"2026-06-07T06:45:53.179737Z","times_seen":1318,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/autocomplete.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"e5aaa54676ee1d04360c360ae5f54e67","sha1":"22ff504acff03221bd3fa4ee6e0f1a0473ebb3c3","sha256":"45e68625e3df94345c0ad523eb3c6607a7aa6b348a0b3100fb00d728bbf87d2b","sha512":"5543b2b0299a838562e81bc9ed2bc08152b5d9db20c5c2becbd08ece26d4c7644e1525886b5c1b722e4eac60fdef173fc35932ca8116259c7aa602f084c00cd3","ssdeep":"384:xpwy+FbKV5MNWNIOGOV5NzgR/acvQAtBXO:P/KOMNEZ15yRicI","tlshash":"8642c64477823631d69b20edc85b444e9db7be0a2c062090b326c9c59cb9f09e1eff76","size":12687,"data":"","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-13T21:09:45.459433Z","times_seen":741,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"6823120876c9afc8929418c9a6f8e343","sha1":"90b0adb37d70ffec5f9189c36bb0027c310c9502","sha256":"b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1","sha512":"63d84226815c831245754adb30040ee72dcf218d01f991a5619675374bbe3b706e3721d32f5120d9d27e500813e8214244992b3875b3a7e7e4bc7ded5201183a","ssdeep":"96:PwSrH5hrG6Qpw1rIN2Bkqsu6B89w1y+7Y3qv5StcXyuC0r4oYeTnf49uVhWWTfju:PwSrq6Qpw1rI2k1u6i9woa3hSSCP9+XC","tlshash":"00b1318db7737563125aa0f2b31b430ab3b6509ea128419d765cecf39cb490a1973fb0","size":5520,"data":"","first_seen":"2023-11-08T01:34:44Z","last_seen":"2026-06-14T05:19:42.006332Z","times_seen":185952,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef56117d1bb5cc41aa6bd127a49c7640","sha1":"b9c2ed774177fc0fceba5cb58113024b23fe4fb7","sha256":"d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620","sha512":"0ec9039dbb47470815ad8bf58fd206672717a146b3a99bcb12444687e8489698e06664e6c6cc38a5d2954fa919e5a6c3bc57e44f3be2655f92b801bac43ec763","ssdeep":"192:x9cCxjlRE8iST7TMcPvedRUtV7uLEUfHqo/gH5P5AxTov7fG3ex2NrMP:x9RjlRE8iSf4cPmgtV7uoOKIgxaxTovp","tlshash":"9f12e96831f3215780b7b1907cf7e38f73b2553c648798d1d0acd4692aacd7a2622f09","size":9636,"data":"","first_seen":"2023-08-09T05:33:46Z","last_seen":"2026-06-14T05:36:08.520558Z","times_seen":154716,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/underscore.min.js?ver=1.13.7","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"dadb3f410026822807858737cbc7b64c","sha1":"477bafdb06d8dc0c22ada8d30067b5a0af2d79b4","sha256":"2f61c0b3d5a147bae06a4f6fd7d90031ddf39cba37e17926999b2645ac746a14","sha512":"1f6cfaf7978f2bd30503abaed49c193625e9a204ce359806449558d0caf09cae7dd10d2156e25f61b8f49efc3b7420b1332a480990da94f5a2ea3d30c262e8bf","ssdeep":"384:u2Rq5yjN1V02mEHrJDzWpl0bMpOt3PPD71ijeE9OWj:LqIbV0sHGl0dD71Uj","tlshash":"288281c83ac2f05aa76330b5406f508bf23a3ea16cada840c265e4f8bd7445d9137d6d","size":18905,"data":"","first_seen":"2025-04-01T10:25:57.91067Z","last_seen":"2026-06-14T05:01:35.11527Z","times_seen":114578,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/tooltips.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"3c1ff2acafd4cbcf11a550f2b5118fc4","sha1":"9c03d0d46051b4734e96ffeb7aee1c7fd0181a65","sha256":"171ad38114f5ead88836c2dddf337663dd3fea39260e0a4d093cb389a1981a8d","sha512":"d3d6282842656caf34b4aab08d581c30c4a967596c44eb902e9a201292843b5765a617cf9c43f51d742cae53ef5728caa46030eca11e23479765cc58c6418c98","ssdeep":"768:B8a90cwhF98HqQJrr+Qa7iIFGkbu3ngcfl53M1+IovxApA:qa+c698HqQMIWJpA","tlshash":"5fd207493290b4b247eb91b7806f460e72376499714a9028f6acd4ee2c74de9703be7d","size":29982,"data":"","first_seen":"2023-03-07T21:59:07Z","last_seen":"2026-06-13T21:09:45.451612Z","times_seen":509,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wc-order-attribution-js-extra","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b618e39d7b15db041320a92a10570311","sha1":"ccdd919fa05a8b53fb92c76d875443ae9df17a41","sha256":"b814969e3081f0f502427f1d0bc0379595f35c7f091b4fd608080d19f55298c4","sha512":"d493db2f5bbf1c7e5d8f698f689846e39709286c42fbd968c5301a3d41c79d4d57be9e7cce049c001602995fb244f57f7ae0f5ec9668ddc807acdbdb7a9faadf","ssdeep":"","tlshash":"c5517812ee442872f7d2803451997bfa32b3337af0d0402d83ed4a1d9228b91e08250e","size":3080,"data":"","first_seen":"2026-02-01T05:36:39.411099Z","last_seen":"2026-02-01T19:14:50.252476Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.20.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"introduction_type":"scriptElement","is_inline":false,"md5":"b98602736a1b45f3f54849a0969dccbc","sha1":"eb08f16462a10557eb106e888d91ed21627d2929","sha256":"6ae7f2b09995ae0dfba615f3d3233d89d8024882d0e14aba562c91379f975bf6","sha512":"c662902195e4d9b9ec6ce3664d7c3a1e3c089aa8b4fbdfadb9e80b88673f6adf07e92d5f653f6dd2725262c7ce8aa1fb8f1e1ef6e91579221ec2167a307ee429","ssdeep":"96:Bk/2ifnhUwdL5MIGA6iZ20DTl7CKEpre1+Xz2x4Af094Mxbl26GVleVlAlvkbzgF:u/2ifhU6L5MXiZzTgvrxqCO094Mx/GaW","tlshash":"dbc164d91a549e6b26e03ad8b0975b701e3dd0233c29ea81e951eddc19f8fd083d9933","size":5825,"data":"","first_seen":"2024-03-21T13:11:23Z","last_seen":"2026-06-07T20:46:26.095296Z","times_seen":350,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite-rtl.min.css?ver=3.20.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite-rtl.min.css?ver=3.20.1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:21:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601340c-2b2c\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11052,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (11008)","md5":"ddfa2c83e28fbe6cec848ef80f1ba653","sha1":"5f73975c2195490e7566c482edf097a0cb992d89","sha256":"754656b345aa03152d4ae3c265412ceb0bf5907550606432e2ea3ee19c2d00e2","sha512":"fa3169804ca901d204ee2569f01a75ee6e6d601bffcf15a6aeca3c4177f00de876a87c3a4deb4e7dd63807864907d8b2cc303c13d9962d7689adfb4512ae7078","ssdeep":"192:AlCUn8qrIuqxIZqJIrqYqP3qYIYIP3IHq8qL3q/I8IL3IuqL3IL+q8IXqFqDqeqd:PpkSX","tlshash":"a6325b36bd0b485c53bf51b7908b269c0a09c9cae1611cbdfb60650f41f4e89f3b9627","first_seen":"2024-08-19T19:41:30.910596Z","last_seen":"2026-02-01T19:14:50.115612Z","times_seen":4,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/elementor/css/post-13.css?ver=1711354929","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/elementor/css/post-13.css?ver=1711354929 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:22:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66013432-1279\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4729,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4729), with no line terminators","md5":"5d8f337120f092091299b5167749101f","sha1":"f1b72fc9d460020849bb6ff94a83b8f7732c27f1","sha256":"c845e6dd16e8b1715443c360683d11dbb632b7d58d237a76c614332d99ad67be","sha512":"3f53cb759e76da50348807a944fea6105a31f89f5c07cbf895edd829851ff9b2517143afd20497d43e53fd4960a1c4c6293288ef2059771609fcd7aad5a75831","ssdeep":"96:LlLAnG6RvypS9AdufuIQPX/U0LRvwS59AduS2mv7JX0LAn8APRvA3RvttJF:p05wpSidufuIQPX/RiS5iduSLJk08sIZ","tlshash":"05a1d45a7d430018702fa66f6123a6cc66388cd9e57d77eae4766053b075ca233f2d2a","first_seen":"2026-02-01T05:36:39.387584Z","last_seen":"2026-02-01T19:14:50.118028Z","times_seen":2,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/css/style-rtl-elementor.min.css?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/css/style-rtl-elementor.min.css?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-6f30d\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":455437,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"d51f02a6c708e432a59b7e722e4052e8","sha1":"34401aab2dfdde8313b0cef8ec850f6ca62b0dde","sha256":"7d9d926b73931c17066ab4a742af18dae478b39e01519796339fcca7f86927ce","sha512":"7ce284f2baadb3837be5564b81d2b26e20e988208e4c050e50368079ceccc2f20baa69a569377489f173791a3eba9788efea02de51de1480892dc4befb648b6d","ssdeep":"3072:V1ZzPK4SMOHZqAQYkZgq8UbDE7LdKBI9qofA9pEcCfZJbP9208gWDvnvMHQjKOkz:vUHY4ogq85D","tlshash":"d1a4e868f235253c6a1bc62e9ac0f5ad3524fe03d7975af9f9629608c7ca6d3032171c","first_seen":"2025-08-23T13:49:21.056048Z","last_seen":"2026-02-01T19:14:50.121708Z","times_seen":4,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/special-offer-woodmart/assets/js/plugin.js?ver=1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/special-offer-woodmart/assets/js/plugin.js?ver=1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-cac\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3244,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with CRLF line terminators","md5":"ebeab00ef8613052b0c5d1a1d6b08240","sha1":"e403f600d24b37e8940cc69da89862dd03f7ca81","sha256":"cf19f105afe0bd1f5d015a32f981f9388b4492e091fa7863d8265cfacda7f0d9","sha512":"9ad740f759b7dd7db3c7c33d567740ac526b583757014d038621da6c5a733dd25e36964e99a3a09436152757d3d0eab38463465cea2cfbd3e8b06131cb26f816","ssdeep":"","tlshash":"9761eeb5a01e20761eb3f72ec92ba720e6f2b7531949a5b33dbc06149f32045119bedc","first_seen":"2023-11-11T12:04:25Z","last_seen":"2026-02-18T03:04:25.606248Z","times_seen":16,"resource_available":true,"data":null}},"time_used":387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-38a4\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14500,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (14500), with no line terminators","md5":"af44f82a13e50f4ab09a194247ac71bc","sha1":"e1c921fa718e918e70a25cd278a9ff5b8be9c2bf","sha256":"881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9","sha512":"aea9f345962ee018693cd6dbd7b9e2647fb9be912d9a523970b156433db0e4dd8291d85253da2f67463e4c38a3c17203971b5009ba0dc4ce5d69e532831f7a66","ssdeep":"192:00oFejLIcYEmCha3RT6fiwMXPNfjRPqQ9gVtvO9b73iAcUe3pfpVnrpN5:1oF+dwRTzRSouq3OVpVlX","tlshash":"5852e945b861103586a121ec182f514e627add37e2b46824ef2c94a93cbcfcf50bbf6d","first_seen":"2024-01-10T00:29:36Z","last_seen":"2026-06-13T12:32:45.068218Z","times_seen":7018,"resource_available":true,"data":null}},"time_used":389,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":389,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/same-day-delivery-41x24-1.png","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/same-day-delivery-41x24-1.png HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 2393\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-959\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2393,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 41 x 24, 8-bit/color RGBA, non-interlaced","md5":"acac60bd51f36af2360e0dbd6907bca3","sha1":"f2a72c122079f0197d0be4b2bcbed1640d993267","sha256":"b80c16227d8869aadd531a638fd21b864e7ec10b4513e9a89ba3739fcba1f3a4","sha512":"96bd1a308fb85fbb6c2103e510bf37381de34db97553ec1e1f399741ea1dc286bfacb3fb9947a69c47082938127abadb79a396d5704ec0ee639ea01f398e7845","ssdeep":"","tlshash":"49415d57fd5a7c917f41c2bb09371840c992710e9a672b04d131cc785e5d19129f3e63","first_seen":"2026-02-01T05:36:39.321879Z","last_seen":"2026-02-01T19:14:50.128129Z","times_seen":2,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/cat4.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.654Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/cat4.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Frastaroyesh.com%2F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5650\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-1612\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5650,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 262x340, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a199c68933397524df1d49b161b17ed2","sha1":"a114ef238c593a8b28ad04a29b0bdebe24bbd6de","sha256":"8bbbc5a5b253896e34df34e7c6437c60a7169245ca353563b2dbb32da44303ab","sha512":"219e66baf02322e4f69221c537a3cc5c498ab16c1d9a05ddb8bd16edf403a14c050dcc20b6c6ada4256612f4f55d1d3b03bb9195cdaff79ae8a527e2a632f4b1","ssdeep":"96:nWXzJtF+TSNPaDa2auF8wqTlbN3wQYW/lMk5FO1XJ+okqA+QbL:nWXzJSTSNPAtauiwGbZwQrt41XgoobL","tlshash":"9cc17c35f09e37c1e9ae9135c7dfc8f696481318a411128bdec02ba41e1cfe98a825bd","first_seen":"2026-02-01T05:36:39.339592Z","last_seen":"2026-02-01T19:14:50.130518Z","times_seen":2,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"uka.3sz.ir/wp-content/uploads/2022/01/items.png","fqdn":"uka.3sz.ir","domain":"3sz.ir","tld":"ir"},"ip":{"addr":"185.78.22.80","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uka.3sz.ir","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 18:54:49 GMT","end":"Wed, 25 Feb 2026 18:54:48 GMT"},"fingerprint":{"sha1":"56:DE:4B:81:09:8D:79:5F:1B:EB:4B:B4:94:59:BE:0C:57:C0:D5:3F","sha256":"21:5A:36:19:70:AD:49:14:A0:EB:F0:BA:89:93:B1:32:E2:FF:3C:25:0D:39:02:78:41:2A:A9:64:02:10:27:26"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/items.png HTTP/1.1\r\nHost: uka.3sz.ir\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 43080\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-a848\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43080,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 910, 8-bit colormap, non-interlaced","md5":"9e2a91f8a12e06cc0581d65a92f9cc7e","sha1":"7d4215f2337eb97d2cb568b268483092cfe2a0d7","sha256":"257ecbceeeda4184284f6b6fe05c071c807715686cbcb5ad97f6121fcb8c9507","sha512":"8425c82668944752003d5bbc8394bcf7acb3ec1f0cc6408e5de89eb3d415a93617a6fa288f61b5f99facf7a1b825c4c9530a2f02dcc66ec62c8d34249d5bcfea","ssdeep":"768:DO9nxEj4StKYy3WSSa/1FDc9VvbkAULKLMeCBvP1O:DO9nxctW9Sc3c/vbn9MNQ","tlshash":"0d13f1a0908efb61f1d4eb3b4c6e0caafed443b981c9ccc15bd05987a0d7a550bb985d","first_seen":"2026-02-01T05:36:39.316423Z","last_seen":"2026-02-01T19:14:50.132962Z","times_seen":2,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":87,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-2a3\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":675,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (489)","md5":"144e43c3b3d8ea5b278c062c202c92f2","sha1":"3c037057a419245849747b4762d09d88cab66fc1","sha256":"9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37","sha512":"6a95fcac537f2b1256f2b9e241b92fcebb214372afc841fee2ccd3dd29e8e6cbddafa13f08fd1013ceb6c8478b04c5270aa2e4a3c41aba01a4cef592eee35f15","ssdeep":"","tlshash":"360149a506110045c2820b063adfbe1dad0ae2587c296f63e12fdd2d0cf9e5f21faf49","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-14T05:15:23.879945Z","times_seen":75287,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/05/%DB%8C%D9%88%DA%A9%D8%A7.png","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/05/%DB%8C%D9%88%DA%A9%D8%A7.png HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 54326\r\nlast-modified: Sun, 22 May 2022 14:21:38 GMT\r\netag: \"628a46f2-d436\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":54326,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1232 x 1246, 8-bit/color RGBA, non-interlaced","md5":"5df7e069ef8f592c116dbc0ba731adf5","sha1":"ccf0dc03198657ff475287d1b7b5d8e6525179a9","sha256":"ac9091a9e695e618bc052dc35123a194dcbad957d25d72a21ae73df65a1694ff","sha512":"8bb77a58ffaf237cd19283b0c116d7fc585c22245a8d913090d9e182cbd321bb73724567def9131a0c2da9bfe19887e04d8d6220dc62a30662eba2be532a32e4","ssdeep":"1536:hLseZipfpRRHf6frxyCdZ7f4T5RkVoxZU/B:BZUfpRFyf1y0aSVoTUB","tlshash":"5733e0e9d498c928f3d8d33ca97d8b251179fac9b0a0f1ca8c7f866569c38c14c1e079","first_seen":"2026-02-01T05:36:39.37152Z","last_seen":"2026-02-01T19:14:50.136276Z","times_seen":2,"resource_available":false,"data":null}},"time_used":390,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":387,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/dist/hooks.min.js?ver=dd5603f07f9220ed27f1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.028Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/dist/hooks.min.js?ver=dd5603f07f9220ed27f1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 21:02:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694da65a-161d\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5661,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5626)","md5":"90e932bd9e62583fc494c00498cfe7f5","sha1":"4f57e11bff609f90f49174187a0b5a6ba847ad28","sha256":"87cee5f49ba0d3017efc409579fc58b91a717f8f14751f7d804447ac9bcbaf4b","sha512":"ed9c129faf972ddfa705f05c3207884e5e9cd175baa45d49ce9d42bc0d01e4e8f36e627731bdd97214b1e2400fdd5012262a42f9800cd4f5565dbf183ba58507","ssdeep":"96:wXDE/3s/0EBM6ZUUCRTH+zl4NsBjcEmDtrGV2C2yics6w1RfGdzsvqZTq:wzg3kBFZYH+zhjngRw2cLzw1RfGdzsvx","tlshash":"56c153847983b970b2337057f0ff48d561baeba575298081964ec4a05d7388ee0a7abd","first_seen":"2025-10-27T08:47:54.273294Z","last_seen":"2026-06-14T05:34:55.507336Z","times_seen":195247,"resource_available":true,"data":null}},"time_used":375,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":375,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/scripts/combine.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/scripts/combine.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-2904c\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":168012,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6b9f776e1c5eb610d476636d847a3449","sha1":"615760b205269ea393081e0b33ca9f87fa2f188c","sha256":"26a82f058407e4cfcb375110cf32abfaf190e2e396e0c739d152c4b9189453f1","sha512":"25f87225521d7c57308673e7caba764597b0d645aff8ea874ac89ad7ee580bfdf17b156462b79573222bf488cf2eef1faf65b6110dcfb6255f8b2c3828695733","ssdeep":"3072:xjnx8bvPrHm778bjKYrAUr2zmO6aS2ZjrSCZBLPip8W8eJhdtJB/jq:ts/KIrx0vSCZln","tlshash":"80f3a894f42b24ba1d6b3ce5905ba5c9787277254e238067906ee0ec097cd851337efe","first_seen":"2023-09-21T14:01:05Z","last_seen":"2026-05-06T13:54:22.187084Z","times_seen":5,"resource_available":true,"data":null}},"time_used":365,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 78196\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\netag: \"6601336c-13174\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":78196,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261","md5":"e8a427e15cc502bef99cfd722b37ea98","sha1":"a9922842a120a7f1eaced667480c5e185a106d69","sha256":"d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef","sha512":"113775748a4166c07e58c26cf6db7fed473732dc6124b8ee0f0dcc0d6439eb2ab2c5d9e01c67324fdf9de4105349cf30cc5796a0b0e0ce9a08f337b9d4e10b7b","ssdeep":"1536:1iGQV8Q8UOUMUd5UY3qyCkHQCCz2LL1F+u3MHLGxe3U:QVWuF33qy7HQchFz8HnU","tlshash":"3273121cf567643ef6a8e05f3c38256d4fd5c724e2e68a06748db808c4ce71d90879b6","first_seen":"2023-04-05T08:37:56Z","last_seen":"2026-06-14T05:32:05.137314Z","times_seen":151974,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-35da\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13786,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (13786), with no line terminators","md5":"c3825b9d2bb7e067a90db543db343f68","sha1":"7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa","sha256":"70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504","sha512":"88c89ccbab7f6d24028e465e2011515f95558a472cffec1f859177c7953b3cf41c49885fa412d5acba36e775055bd9c488d5500d72a4026b07e8825a1697066c","ssdeep":"384:LruRTEkOxtOjwxjEqUDBs6idGMPx/OYcNK0lnDuQyFwT5QrOpF1D96hRYH:L/LGkdGMJqNK0lnDuQyFwT5QrOpF1D9v","tlshash":"c0523de5b23718537a6f11e7988f540cb135e83c6252c4b99c9ae7b3883ce446363b1e","first_seen":"2023-08-09T18:07:41Z","last_seen":"2026-06-14T00:23:05.950109Z","times_seen":5054,"resource_available":true,"data":null}},"time_used":346,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/css/parts/int-elementor-pro-rtl.min.css?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/css/parts/int-elementor-pro-rtl.min.css?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-ddd\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3549,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3548)","md5":"e6092b7136b91e0b7bc18e39f9c9b7fa","sha1":"784ade24f3fba0d1eb3e8f099046b164aad45f57","sha256":"c7abfebd1b05fa743f02937012bc53ae6bb955dc3aed10a78a279dbfe7310c4d","sha512":"a54ad3aa494f2543399541289a9b48dd15356eb10a2635c8b82bb5f192df9e4a063bc3ae3953fcad9ccc1ed065b909618647eaca2a6c8e67b6a238defb1a9c63","ssdeep":"","tlshash":"0d716dd7f9379c94735f606e188334dd389076e8b682d5b0ee62b60a65ec9d2332067c","first_seen":"2023-05-10T12:51:00Z","last_seen":"2026-02-01T19:14:50.147239Z","times_seen":12,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-bf2\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3058,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3058), with no line terminators","md5":"e56bc891d47a0687c80dbe086a5b1e90","sha1":"a9e643e186e62cbb3f0e518f473b8702c2945802","sha256":"4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba","sha512":"869cc24f825e325c494d3b81fd7a8803f1c4b417f7db3b9aaa9aad41cca90a910a898f9136ad5468828cf9c0a78416b3a599fb32b1fdf15a0bee55bc62651698","ssdeep":"","tlshash":"5e5171ceb122f07247e62981a41bd6865432287af19aa4fc308d71d58f74a066463f3f","first_seen":"2024-01-21T00:01:31Z","last_seen":"2026-06-14T03:12:54.6352Z","times_seen":9999,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.20.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.20.1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 25 Mar 2024 08:21:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601340c-61ea\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25066,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (25022)","md5":"0e871210a406aa5d5b766e28faa44834","sha1":"98dd24feef472e3c69a158a294bd0e83aeb54a1e","sha256":"9af77ff87c6e8ee5446846ce801c3adaf9ea87f66bab96a80470b112ed5a32ca","sha512":"ee59a1084e8f73ebd9582c9a4dc0cace991b637e9419367de6565cbb4daa3ea5dfa0289d7ac9ba11736996afbedf1894f2753e2de96e7b812641e2e1edf19975","ssdeep":"768:hTLX+EVxFm6cKibdndptaQ9HuGJswyC/pkTAQYtDT6HJiwknOsN7KOljuOzQYqER:ltVxFm61ib94Q9HuGHiiwkOsN7KOljuy","tlshash":"43b2d9063153a87a50cfc15be067420e7b3748857405b0ed7abc6ceba5b8d9a33ea335","first_seen":"2024-03-21T13:11:23Z","last_seen":"2026-06-07T20:46:26.132465Z","times_seen":347,"resource_available":true,"data":null}},"time_used":374,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":374,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 11 Aug 2023 18:18:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64d67b72-1590\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5520,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4358)","md5":"6823120876c9afc8929418c9a6f8e343","sha1":"90b0adb37d70ffec5f9189c36bb0027c310c9502","sha256":"b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1","sha512":"63d84226815c831245754adb30040ee72dcf218d01f991a5619675374bbe3b706e3721d32f5120d9d27e500813e8214244992b3875b3a7e7e4bc7ded5201183a","ssdeep":"96:PwSrH5hrG6Qpw1rIN2Bkqsu6B89w1y+7Y3qv5StcXyuC0r4oYeTnf49uVhWWTfju:PwSrq6Qpw1rI2k1u6i9woa3hSSCP9+XC","tlshash":"00b1318db7737563125aa0f2b31b430ab3b6509ea128419d765cecf39cb490a1973fb0","first_seen":"2023-11-08T01:34:44Z","last_seen":"2026-06-14T05:19:42.006332Z","times_seen":185952,"resource_available":true,"data":null}},"time_used":366,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/rtl.css","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/rtl.css HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-4c90\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19600,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1494)","md5":"86d1911c55b5166950fdeea6181e52f2","sha1":"d5fdfa06bf2e383945c4dd0ca2887eeba52696e0","sha256":"5a086a47d831dc9de18d0f0afe997bcd9b8773f624349f032b27806c81dd314a","sha512":"64f1a0d4717a399036e06964b341a26b432bdfa50ed41803770bdaf5f96a84903e0d02a748db8b861071090a24d0fad319f2015e7a8a24c4723e2ac908d76051","ssdeep":"384:v8a462uGf8a462uGxwO4W2CGvnr4329G/xJ412LGYwO4W2CGbtJEMcf0V70T7mjC:v8BJHf8BJHxwVtDvnMGw/x+YSYwVtD1i","tlshash":"e392b8238ce6359a3a90811c77f59f8a2e8d41169518cdd1fe38a918dff336805e1f9d","first_seen":"2023-08-01T20:00:13Z","last_seen":"2026-04-03T09:22:34.279345Z","times_seen":28,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/css/bootstrap.min.css?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.981Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/css/bootstrap.min.css?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-4ee6\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20198,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (19981)","md5":"f0e222718e56517481dad05cc48a343c","sha1":"60ac04897816922620d614e13279dfdab5269c4b","sha256":"d86bde1c2b2cf80bc3d3688fedbe0466917a3ba25b49de3b49b43296238ecde7","sha512":"8310679ea0aae17f3ec39cd2b203395913ff6e95315890dfcc0f7fec2e891799c1ed24f8ba4cdcdc4db3550ff12a5d80dd00be4b07a2758cfda293f8d0938246","ssdeep":"96:Zz97ME968d2NAFTX/gRgRgEKconPInInI6IeIeIZIdI+IO4IrIoIoTw9cwMcI0jC:f5968kWJoRg6EKPk5088IF9IR","tlshash":"2892bfc3f4a11e9d0652c80c24607a7e44bf6482e7b6dceeb0666b7417de6c70de294e","first_seen":"2023-04-07T00:04:28Z","last_seen":"2026-06-09T10:05:58.942429Z","times_seen":121,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/favicon.ico","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Frastaroyesh.com%2F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-14T05:33:56.273651Z","times_seen":526509,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.20.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.20.1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 25 Mar 2024 08:21:32 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601340c-16c1\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5825,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5781)","md5":"b98602736a1b45f3f54849a0969dccbc","sha1":"eb08f16462a10557eb106e888d91ed21627d2929","sha256":"6ae7f2b09995ae0dfba615f3d3233d89d8024882d0e14aba562c91379f975bf6","sha512":"c662902195e4d9b9ec6ce3664d7c3a1e3c089aa8b4fbdfadb9e80b88673f6adf07e92d5f653f6dd2725262c7ce8aa1fb8f1e1ef6e91579221ec2167a307ee429","ssdeep":"96:Bk/2ifnhUwdL5MIGA6iZ20DTl7CKEpre1+Xz2x4Af094Mxbl26GVleVlAlvkbzgF:u/2ifhU6L5MXiZzTgvrxqCO094Mx/GaW","tlshash":"dbc164d91a549e6b26e03ad8b0975b701e3dd0233c29ea81e951eddc19f8fd083d9933","first_seen":"2024-03-21T13:11:23Z","last_seen":"2026-06-07T20:46:26.095296Z","times_seen":350,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/magnific-popup.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/libs/magnific-popup.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-509c\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20636,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20636), with no line terminators","md5":"129e177fdf40035068e59e08414ca09b","sha1":"9c40bd43c3cd967703909d3fd5af316498dccb1f","sha256":"a76f5806e54434685f67e97bd8759abdec42dbc51ab2f6302d1fd6a8f14d6caf","sha512":"902e19245679f7f49075300c2fb229324e9fc127a40377e5c93e6f25cccef3371e98b9e58acc67d2f317a0f838d60d5fd60db5859165024c116600c8780d52d0","ssdeep":"384:p8tbbBOhcIn82lx2UCTqypHpG578aLdqw/sdi2hbsiuLA8MjsMZZ:pgKl8NaBLdqwEion+qn","tlshash":"0d922ba4f1a1b27387e360b4295f382c36369923cd06c402756598e85df8fe99227f7d","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-10T23:40:00.236991Z","times_seen":564,"resource_available":true,"data":null}},"time_used":358,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":358,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/owl.carousel.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/libs/owl.carousel.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-a5d4\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":42452,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (42452), with no line terminators","md5":"d2b1954e15f96d7bb809ea5c8fb1c873","sha1":"3b3c4a5e87400f1bf087eeb5623c89511902d962","sha256":"50da9a9a9465d794f53793f9329b8f7f8976362ab44e59ad85774a62277fb9e1","sha512":"374ac22ac024dcbaad974db898a977eb795a1c9ddffcd436846aaae997b8eda05ea64c8f7171d072274d7d018af39b53bcd3d6458ba536797d1456053e75d563","ssdeep":"768:XybkMF52/mO9hA5nmyndwuel12I/de3VhgncT15BTJ:XakMFh5SZncTtJ","tlshash":"58135145f3202c2a469b51a0663f160bb23b251ce506506d7978eaeeac7dc4d312fbf9","first_seen":"2023-03-07T12:04:08Z","last_seen":"2026-06-13T23:07:27.505386Z","times_seen":754,"resource_available":true,"data":null}},"time_used":360,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":360,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/wp-util.min.js?ver=6.9","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/wp-util.min.js?ver=6.9 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 20 Sep 2022 03:52:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"632938ea-592\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1426,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1391)","md5":"19d386c9004e54941c1cc61d357efa5d","sha1":"0a77594006c8d86fdcc0adbc2b9aecaef3869586","sha256":"3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95","sha512":"7811cf6babb4df41707f97d1bd65337b5ad7aaedff301fcedb90fb7773fa9876f52458aa03a576910f6126384599ef25f8de76ee309c22e1914d9cf444aefb6f","ssdeep":"","tlshash":"ed21795a7175a9f311333479c23f0207f332e4145a168951e489c4f19d70d8be5b7a19","first_seen":"2023-03-08T14:26:29Z","last_seen":"2026-06-14T04:45:10.802032Z","times_seen":100161,"resource_available":true,"data":null}},"time_used":348,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":348,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/cat3.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.658Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/cat3.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Frastaroyesh.com%2F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5644\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-160c\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5644,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 262x340, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"269312e8d76375628874097906dd02da","sha1":"3f0c0cbdd31cb00a68669ad03468504321932429","sha256":"561d51f34f44c7b854e7e92fa78f7fd060b23c45da1bcb5fd7954f1c04c0e4ba","sha512":"42e0f2f965ec5fbaa3d9cc2a0516c42d2e1300beab69e05c3eccef06da74a51d9b3415f451df9472e17f329c0e4dfbc3ab2b10b563926dff2ea4c782a8cf341c","ssdeep":"96:flXM/pZvk/BlYyfCbb5w0kS7PgKlMxhCcbvj4PwdBMv7F/eBjD8O830Y4:fRMRZ8/HzCbVw3yYKlMxhfbvjucBi7Fl","tlshash":"fcc19ebbd92035950d8b1062c06440d6f4a5c76e1e8c96213891f895f8f71ae9bacebb","first_seen":"2026-02-01T05:36:39.402322Z","last_seen":"2026-02-01T19:14:50.159061Z","times_seen":2,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/slider1.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.015Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/slider1.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 36280\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-8db8\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36280,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1110x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"28986309adeadd2fc7584932be458e1d","sha1":"706a75a293853ed0fcb36540ab937bc1d3fc6b1b","sha256":"ebea822708fcdfd830f4ecbbc64f1765bdabd554c7a2ea83b1bd2d7dc1d68ade","sha512":"f41ae8430a0164b182913e7e63cbde6e3c09a18d2f8791e728b1d7d8acbe234369677ab052d2b194aada6954caf25b48338f630d23cbb4f4a64ee018eeff5393","ssdeep":"768:C4sIts/Gou7mHgLsc+ykmMKQF9ZLhRcIYAMXLkL10uQKNIa7N2m:CA3czya5Lz9/2S1BTIa7Mm","tlshash":"fcf2f1f73bad79cc4fe6def54388e548670813bb7d044a862ac4209fa5172e41d96c39","first_seen":"2026-02-01T05:36:39.378354Z","last_seen":"2026-02-01T19:14:50.161202Z","times_seen":2,"resource_available":false,"data":null}},"time_used":501,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":402,"receive":99,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/Swiper/4.5.1/js/swiper.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/Swiper/4.5.1/js/swiper.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 28993\r\ncf-ray: 9c73c5967c9ab4f4-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03cf2-1f6e9\"\r\nlast-modified: Mon, 04 May 2020 16:04:02 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 934377\r\nexpires: Fri, 22 Jan 2027 19:14:26 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=s%2BqhGfPc0sihKvjXcUtVjYZCsanzzd9KnrjBWBHx8Th7hxCFiePwhdT7HQk86Ml7JtLYMWkbYlHDMGywO7X4vPmkMysKYIhl6%2F2sj%2FwyBDqmLAeE9RJ3n9RAb3gXU0qyQxDfzU3A\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":128745,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65269)","md5":"2ac19265b38d14235141d184bca54d9a","sha1":"c725eb5a33d093e331e25c3a5ef1272b0f1f648c","sha256":"e2c1132a1877692ca2e8d46203eaae9cf6936b0a9230341c6bfc4b5aedbb1e0e","sha512":"6476ae51cfef0724ba254cff1e5d68f2cda477840954b01b933f1c9608ed6ca5094fe006d5cef7e5a32d54b25fb4a418a3e2c3eb642bcafa0d6bebaacbeac21d","ssdeep":"1536:O/pPCitsufJthaK85kqzOAkRlojU6tU8r5MhkhGllpcXvH7WcWUKcOqylFE8BtOa:+JthJkOAkaRaaGl4fH7WcWUKcOqjtYD","tlshash":"2bc31849b35071e551e72256539ed601a3b66845b90ac0a831b2d8d7acbce8c03bfffd","first_seen":"2023-03-07T12:58:52Z","last_seen":"2026-06-13T01:56:53.173083Z","times_seen":2394,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":14,"receive":3,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.20.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.025Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.20.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-1385\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4997,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4957)","md5":"fa18c242d01e0ea9f55f7410ed1803a7","sha1":"83ace9932da95e2728f862e124e79726561f6f3b","sha256":"2a2f6696cabf9e52f1853bc7067bfa0e9b483e5e91888deaaef1277db88da7b9","sha512":"ed8da3e0f63351afa04384163147054f634773bda3ddfc6b47022a2a50272ffb00d0bf0a74075b0f53320b179e59c314082a47cc1974f3ad7ec1d76098b33d07","ssdeep":"96:BYsNt0jqf9fzI7pf8FDwlCjNVobVDPkqflkxwvT8S2:qsNCjw9fXFDdN4FPkyXgS2","tlshash":"12a130d41b90fc6735e135c9a11aa731752fc0333d1ab8c1fa22dced98e8a9187a9931","first_seen":"2024-03-20T22:15:30Z","last_seen":"2026-06-12T01:34:36.955901Z","times_seen":405,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/underscore.min.js?ver=1.13.7","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/underscore.min.js?ver=1.13.7 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 21:02:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694da65a-49d9\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18905,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (18870)","md5":"dadb3f410026822807858737cbc7b64c","sha1":"477bafdb06d8dc0c22ada8d30067b5a0af2d79b4","sha256":"2f61c0b3d5a147bae06a4f6fd7d90031ddf39cba37e17926999b2645ac746a14","sha512":"1f6cfaf7978f2bd30503abaed49c193625e9a204ce359806449558d0caf09cae7dd10d2156e25f61b8f49efc3b7420b1332a480990da94f5a2ea3d30c262e8bf","ssdeep":"384:u2Rq5yjN1V02mEHrJDzWpl0bMpOt3PPD71ijeE9OWj:LqIbV0sHGl0dD71Uj","tlshash":"288281c83ac2f05aa76330b5406f508bf23a3ea16cada840c265e4f8bd7445d9137d6d","first_seen":"2025-04-01T10:25:57.91067Z","last_seen":"2026-06-14T05:01:35.11527Z","times_seen":114578,"resource_available":true,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/autocomplete.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/libs/autocomplete.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-318f\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12687,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (12685), with no line terminators","md5":"e5aaa54676ee1d04360c360ae5f54e67","sha1":"22ff504acff03221bd3fa4ee6e0f1a0473ebb3c3","sha256":"45e68625e3df94345c0ad523eb3c6607a7aa6b348a0b3100fb00d728bbf87d2b","sha512":"5543b2b0299a838562e81bc9ed2bc08152b5d9db20c5c2becbd08ece26d4c7644e1525886b5c1b722e4eac60fdef173fc35932ca8116259c7aa602f084c00cd3","ssdeep":"384:xpwy+FbKV5MNWNIOGOV5NzgR/acvQAtBXO:P/KOMNEZ15yRicI","tlshash":"8642c64477823631d69b20edc85b444e9db7be0a2c062090b326c9c59cb9f09e1eff76","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-13T21:09:45.459433Z","times_seen":741,"resource_available":true,"data":null}},"time_used":344,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":344,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/fonts/woodmart-font.woff2?v=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 11260\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-2bfc\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11260,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11260, version 1.0","md5":"8f87f86947d1ed8a0cef619469b57287","sha1":"a01d052b4b78da45921b2769559461480a0faef3","sha256":"e7c03b4f4c3e8efada6be41af405385c68e325548531ff76aed102dd695ef6c9","sha512":"b0234d3dd7ff536521c79d80843b50d9aa8201ea252cd53d18dfce5dcdbae7d3b73323a83be1cf1410c65e70be6a4427361011469d6d764f723068fe816a2213","ssdeep":"192:Ke+bo5K54qxeqWpJVNpV0z4LbxKMpFuyI3qrP/w/TymlrvRXBFUrLJ05OZn2eUHW:J4oI5Qhl30zcFKu63I/wvtaJIqZirWky","tlshash":"cc32bf635be1d519e3e054783c03ace50a31640fa12a6b0f032699aa70af8f7f759c70","first_seen":"2023-04-18T11:20:21Z","last_seen":"2026-06-11T14:37:55.921772Z","times_seen":616,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.29.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-4d42\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19778,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (19732)","md5":"45f978120a537b249dfac36306ed5471","sha1":"9eebc1e6fe55d9737d0e91bdfa3976b344ea2a09","sha256":"67ac597bed179b5842d996fad80472c6b9514edde408ade8b892161bcf9e9c88","sha512":"3c9c98d0e0ff13c97f91c8caf84f053f40924e680c95d3236759b27fc7f0b677d07232fb28a5b2a1508d17c2e7f248ee8861a5f93d26a01c3792e26079a68e99","ssdeep":"192:Y9877iN3iCOy2bvGIdp8khugk8/H6qiMs7HqnFTSZq7RXDlCdkgIK:j7iNyqEpXk8/aq8uFucbrgIK","tlshash":"c392dbe4e46923c87b32c403e345f64c64d9f921cac49d19faaf850c1ee16a316c6fb8","first_seen":"2024-02-27T00:43:18Z","last_seen":"2026-06-13T21:33:44.390669Z","times_seen":5721,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-e2d7\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58071,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (57884)","md5":"f4af7e5ec05ebb0f08d43e2384266abc","sha1":"a1869e155e92fa178b9c3ae6dff787df57f195c6","sha256":"fafc4160788beca657ec3e3041976281fb6d54a0e82bb4d22a433f7c6bb8b1d6","sha512":"8352ad9a565e0092429759d29e9384f9c4a5df874fdc448a247080993a3ac99961f13737d57cc4b26ba7107a4bf20718d92429626e175cd46dbbaca2790ebe03","ssdeep":"768:0Eh31IPiyXNq4YxBowbgJlkwF//zMQyYJYX9Bst6VSzO:0E0PxXE4YXJgndFTfy9et5q","tlshash":"6943f9b8e54c01cab731c44bef42b2bc61b6f73de5914d95f00e691c2ad26a81185fba","first_seen":"2024-03-11T23:30:43Z","last_seen":"2026-06-14T05:30:28.716104Z","times_seen":98406,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 28 Aug 2023 17:14:24 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64ecd5f0-15601\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":87553,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"826eb77e86b02ab7724fe3d0141ff87c","sha1":"79cd3587d565afe290076a8d36c31c305a573d18","sha256":"cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf","sha512":"fc79fdb76763025dc39fac045a215ff155ef2f492a0e9640079d6f089fa6218af2b3ab7c6eaf636827dee9294e6939a95ab24554e870c976679c25567ad6374c","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKO:sHNwcv9VBQpLl88SMBQ47GKO","tlshash":"7483f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-11-03T09:26:43Z","last_seen":"2026-06-14T05:33:28.402974Z","times_seen":905694,"resource_available":true,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/tooltips.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/libs/tooltips.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-751e\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29982,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (29982), with no line terminators","md5":"3c1ff2acafd4cbcf11a550f2b5118fc4","sha1":"9c03d0d46051b4734e96ffeb7aee1c7fd0181a65","sha256":"171ad38114f5ead88836c2dddf337663dd3fea39260e0a4d093cb389a1981a8d","sha512":"d3d6282842656caf34b4aab08d581c30c4a967596c44eb902e9a201292843b5765a617cf9c43f51d742cae53ef5728caa46030eca11e23479765cc58c6418c98","ssdeep":"768:B8a90cwhF98HqQJrr+Qa7iIFGkbu3ngcfl53M1+IovxApA:qa+c698HqQMIWJpA","tlshash":"5fd207493290b4b247eb91b7806f460e72376499714a9028f6acd4ee2c74de9703be7d","first_seen":"2023-03-07T21:59:07Z","last_seen":"2026-06-13T21:09:45.451612Z","times_seen":509,"resource_available":true,"data":null}},"time_used":353,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":353,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/css/frontend-lite-rtl.min.css?ver=3.20.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.952Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/css/frontend-lite-rtl.min.css?ver=3.20.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-1cf6b\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":118635,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65496)","md5":"bf08942463cb499e55b7a07da5a43a81","sha1":"65383c7bd008074a5e13ad6ce173328c26216d77","sha256":"80b4accbb71129990fa5677bdff24baf6b6ff27cc6204966be89965a33c7f2ca","sha512":"fb027bd0744eaf9e09fc834c8e339bf85018841dda0ddef33688b894573579939b2b3b4e87c67bb54b321bbdc68edc5769bde9764e99a41ab90034335f36169b","ssdeep":"768:wGnuKb3tgnlKF4sZM8tQfmjoHqn/0ginSla6T8L47YwbuXh7+:w03tQukHqn/snSla6T8L47YwbuXhS","tlshash":"84c353923d07622a562f5e3f4a87769c53a445c1de437adaf442c413d2feee1372a823","first_seen":"2024-05-09T18:18:59Z","last_seen":"2026-02-01T19:14:50.181851Z","times_seen":7,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/libs/device.min.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/libs/device.min.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-c4f\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3151,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (3151), with no line terminators","md5":"827184d6724506af8ce63b614335ba4f","sha1":"2bb122ae3e7986ed81e2074b65c9c73a13f96097","sha256":"47642ad5aa5fea1a6a42e2c41bcc5ffc270e41881b1a84eb4be3689a619d3c36","sha512":"07b4e97cd6465742f47200607246829cde533fd853f94cf700873d00b9612b775b58479f36b8aeeb3c9191f7a44f0e6e38902fb9a7593703c38faff6ddd9a4f5","ssdeep":"","tlshash":"cc513084087618b759316b6150af3f6757229a19298f65aa91c22c0cfdf2f93207fdf1","first_seen":"2023-03-07T12:04:08Z","last_seen":"2026-06-13T23:07:27.524369Z","times_seen":1162,"resource_available":true,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":384,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"secure.gravatar.com/avatar/7932b2e116b076a54f452848eaabd5857f61bd957fe8a218faf216f24c9885bb?s=32\u0026d=mm\u0026r=g","fqdn":"secure.gravatar.com","domain":"gravatar.com","tld":"com"},"ip":{"addr":"192.0.73.2","port":443,"asn":2635,"as":"AUTOMATTIC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gravatar.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Dec 2025 19:44:01 GMT","end":"Wed, 11 Mar 2026 19:44:00 GMT"},"fingerprint":{"sha1":"CB:34:0E:81:05:DA:71:6A:08:72:91:9D:50:59:C9:0E:4A:64:25:12","sha256":"A7:90:62:A7:12:C2:0D:FF:5E:AD:C2:59:1B:A1:87:D0:CA:F7:0C:75:0E:55:5D:33:B4:95:02:57:C3:90:3B:DD"}}},"request":{"raw":"GET /avatar/7932b2e116b076a54f452848eaabd5857f61bd957fe8a218faf216f24c9885bb?s=32\u0026d=mm\u0026r=g HTTP/1.1\r\nHost: secure.gravatar.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 903\r\nlast-modified: Wed, 11 Jan 1984 08:00:00 GMT\r\nlink: \u003chttps://gravatar.com/avatar/7932b2e116b076a54f452848eaabd5857f61bd957fe8a218faf216f24c9885bb?s=32\u0026d=mm\u0026r=g\u003e; rel=\"canonical\"\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline; filename=\"7932b2e116b076a54f452848eaabd5857f61bd957fe8a218faf216f24c9885bb.jpg\"\r\naccept-ranges: bytes\r\nexpires: Sun, 01 Feb 2026 19:19:27 GMT\r\ncache-control: max-age=300\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-nc: HIT arn 26\r\nserver-timing: a8c-cdn, dc;desc=arn, cache;desc=HIT;dur=0.0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":903,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90\", baseline, precision 8, 32x32, components 3","md5":"5eafac187cf5349a9e1038ae267c7492","sha1":"a2b8406992925d2b5906f1434f3b2ffac86523d7","sha256":"966065ff7943c52c2779c77e9d0acab7c4eb541009df40e01e3fd57f239926e8","sha512":"03bf2f1cf18e89adeb5dc8f687e8a2c5d10057409c26428f4527753a660498d65d18abbbd1d1769f9fd6993b7dc08a8fe16e76d42edbb1b74f0d6b91108b3000","ssdeep":"","tlshash":"3511561a474213d0fc17c9f745051dd2e1ed4f853588158a3fe455a5c5a1fd8d54c608","first_seen":"2025-02-28T15:30:28.945995Z","last_seen":"2026-06-13T15:20:37.866036Z","times_seen":876,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":20,"dns":100,"connect":8,"send":0,"wait":8,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/slider2-e1650017894916.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/slider2-e1650017894916.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 33582\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-832e\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33582,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1110x570, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"360a8d17fa959c71346620a1923d7776","sha1":"964f4b3f857f4517b3bc06ddf12b211c7c16a416","sha256":"d580f26b0f0fb9f17a79003abd59cf553d3d791b2a7ce819e4d58a45c1d59572","sha512":"5152387d5413a2211a54c07b360b35ccab74669970e819d1265b6379b8774627d1884ae4a62888f55212a5bd924f98152c1c65b209837996b8592f2d45378a1d","ssdeep":"768:8/EOe1qVu4UW7rXw3B5YSmEMW8GeOAoQeN2gucx14/9XQnqs8gn:Se8VBUW7rA3oXEMTEucx19n","tlshash":"b2e2f13296b20d9487c68df8390b37225b11d4122b3ba83d44a4bd6f018fde46adac7d","first_seen":"2026-02-01T05:36:39.345154Z","last_seen":"2026-02-01T19:14:50.186458Z","times_seen":2,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":402,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/dist/i18n.min.js?ver=c26c3dc7bed366793375","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/dist/i18n.min.js?ver=c26c3dc7bed366793375 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 21:02:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694da65a-14c2\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5314,"size_decoded":0,"mime_type":"application/javascript","magic":"data","md5":"3a5838d1182eb0b11f5a58bfe26e2529","sha1":"920b2291e65d62eb55c1958911768540abaff5cf","sha256":"d4efe709c65438ae90dff385486421fea45762880f21fc4e0dca3fa96210f428","sha512":"bc41d50cd2e5c17c75ba737c303f2f498cc94e2c3fe402b2f15c5f10531e53633598093da98579b2dee65733dce0f763d77380ae35a9591d8bf91f975b7c6845","ssdeep":"96:L9emIWL7lnv93ssmAeGejQVnmggoC7arVCG0GXF730IQRDdlZq+SxSD3LmD:8mIWZVszMuinmg3rQ8Xd30DDdlZq+Sx3","tlshash":"2bb157dcb9d57022235121a0597fb409f3357d6470ebb8006ba9c4a47eb15cfb1a2fad","first_seen":"2025-10-27T08:47:54.280246Z","last_seen":"2026-06-14T05:34:55.526368Z","times_seen":192379,"resource_available":true,"data":null}},"time_used":374,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":374,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"uka.3sz.ir/wp-content/uploads/2022/01/samandehi.png","fqdn":"uka.3sz.ir","domain":"3sz.ir","tld":"ir"},"ip":{"addr":"185.78.22.80","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uka.3sz.ir","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 18:54:49 GMT","end":"Wed, 25 Feb 2026 18:54:48 GMT"},"fingerprint":{"sha1":"56:DE:4B:81:09:8D:79:5F:1B:EB:4B:B4:94:59:BE:0C:57:C0:D5:3F","sha256":"21:5A:36:19:70:AD:49:14:A0:EB:F0:BA:89:93:B1:32:E2:FF:3C:25:0D:39:02:78:41:2A:A9:64:02:10:27:26"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/samandehi.png HTTP/1.1\r\nHost: uka.3sz.ir\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 15596\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-3cec\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15596,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"cd83268f649f39cef27ef84ce3eed222","sha1":"354dd326fbd40e87808b88ff662ac89560028f36","sha256":"9eaae764d0609ed54ddf8b510c7e88171b803a5d4f4cd5fd14623864b19ab551","sha512":"81be2b73d9548bfe5a348f9731115b328959639a66460eaf48a3dba191ebe6e843aee31161d89df459d4ef7203f4cc645c81e76c44b5effa04d4c46863c06f23","ssdeep":"384:EyrNZxpvbzJ/LTQjpys7fxA6uVmmhpcKJ9ud/B08ckS:1pZ3RMv7JZuctKJ8dtS","tlshash":"9962d12fc106b6c166851942b66cc51bbe572ca24ff1ad7222cdcebb5c340f909d8d5d","first_seen":"2026-02-01T05:36:39.399941Z","last_seen":"2026-02-01T19:14:50.189646Z","times_seen":2,"resource_available":false,"data":null}},"time_used":579,"timings":{"blocked":213,"dns":1,"connect":103,"send":0,"wait":144,"receive":0,"ssl":115},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/fonts/yekan/woff/iranyekanwebboldfanum.woff","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/fonts/yekan/woff/iranyekanwebboldfanum.woff HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/wp-content/themes/woodmart/rtl.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: font/woff\r\ncontent-length: 33581\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-832d\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33581,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 33581, version 3.0","md5":"6b1196104b8cf1971a638ee98c3815a8","sha1":"e5a810bfa15bb267fb7422cb8ceb95ddf1d35a55","sha256":"5eab06bb7656830d3d11bafc77a02295d5d4e387d52e8c32839e140292b9ca4c","sha512":"aff7ad1c84fcf8f915d0f00cb2480d1f3a3473f3ceb9e1f8816e293b7cf798997cace0976f70c03e261bfbc9a86b0a56284e891119e0e734ede7eba74718a1fb","ssdeep":"768:cfXtdalnwf6JzLuHqi3jvhsT/Dbq/HCzA6S:c/tUlwf666TLbqPCzw","tlshash":"21e201daa65284c0a4e6b836187bf05247b01eb93939dde34ff7ab810d8c59f5c02b35","first_seen":"2023-05-02T07:19:39Z","last_seen":"2026-06-13T09:53:09.086038Z","times_seen":270,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/banner-plant.jpg","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.651Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/banner-plant.jpg HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 14560\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-38e0\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14560,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 262x340, components 3","md5":"9ac4fa4d2ed474cac72c1c7257501c47","sha1":"2dbebe7500deb8249d14d0a109ba53be5d0f3350","sha256":"b386947d2766925ca66276dc5a211d6c65bf05f806d3e7f45895698728be17b1","sha512":"83c5b64b4002c472ce22831b318ec4a00d7b059b07f73c237681ff924c65c1b06e4d1efa674ec0c6476400ae32ea3d73310a3a6ae193e2ecc69a2221a2a8f899","ssdeep":"384:aEaTgrkzvD+sgw8dyFdhD1ju05NNGmAR+no5u/pm+3V:spvD+s6dyvff3DqIFF","tlshash":"6962bfcaf0b55500ea8e4d3d1eda70b38baa46f4ac7cc13abc9d59d2e3d514399025c3","first_seen":"2026-02-01T05:36:39.348412Z","last_seen":"2026-02-01T19:14:50.194197Z","times_seen":2,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/?wc-ajax=get_refreshed_fragments","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:28.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"POST /?wc-ajax=get_refreshed_fragments HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 18\r\nOrigin: https://rastaroyesh.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Frastaroyesh.com%2F\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":18,"data":"time=1769973268556"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:29 GMT\r\ncontent-type: application/json; charset=UTF-8\r\ncontent-length: 626\r\naccess-control-allow-origin: https://rastaroyesh.com\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff\r\nexpires: Wed, 11 Jan 1984 05:00:00 GMT\r\ncache-control: no-cache, must-revalidate, max-age=0, no-store, private\r\nx-robots-tag: noindex\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1797,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"3cd9f373e862ddb4e4fe28df80958ea0","sha1":"c8ac7cdff7369b3d443fd02cdc6b3b158f3afb22","sha256":"888b11f0a4ab3c631bf9cda33192c4170e244647f20a87241ed8470639f2c337","sha512":"84440ca5f0ce563632167799fe1db50996ee44fd73c283b8d93a12e15900fca05b881e33bb233073a2493d928537430c9349124fea84c6b850cf9a02a3fc6f20","ssdeep":"","tlshash":"ef3112f2b07f11b6436f8bd2349b63ad7ab70648f821405546ee232443dcf347216a6e","first_seen":"2026-02-01T05:36:39.341441Z","last_seen":"2026-02-01T19:14:50.196589Z","times_seen":2,"resource_available":false,"data":null}},"time_used":737,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":737,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/special-offer-woodmart/assets/css/plugin.css?ver=6.9","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.943Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/special-offer-woodmart/assets/css/plugin.css?ver=6.9 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-2599\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9625,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"b241569a49987c31b98a878b7dd05ec7","sha1":"6c12adc3e4f999407d6102779052d842477e084d","sha256":"b1b61059dd18b0b45311ddd6ac68e291c40be3525f3b42aa5650741e7d83d1b8","sha512":"befb5467f4cb6f55f93e121b7a2cf9a716484fb5170d35eb0d163c0a5bd8eb66a191d6ef31c9f763198f4a86b234b435ac3cc29ed894c2f507996785f9c52bec","ssdeep":"192:hQedHYTZxtZl7ost1al1/+QOPjyoxoxMRiSNw8b:9kJG1/+QmcS","tlshash":"5c121269ee2010067232dbac5f71439afb9c019bcf4206b8bbd47258efb54ac552cdd9","first_seen":"2023-11-11T12:04:25Z","last_seen":"2026-02-01T19:14:50.198665Z","times_seen":5,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/elementor/css/post-5.css?ver=1711354929","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.959Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/elementor/css/post-5.css?ver=1711354929 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:22:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66013432-490\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1168,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1168), with no line terminators","md5":"085a2ce30cdfcffe153789d7667f35dc","sha1":"89fc3848472ad333c563c776ed4f76f403988b1a","sha256":"2b2e197a354882f1b80d2337e51f82e4d7d1a23e302d71221b8cfe192fb3a896","sha512":"c4055012f90acecd4004ef8a62c4b5d8593bcb67478a6c7657dfc78692b6fa693fdef2990d8921daee6b187766ac2060a8c94d6e624860899ad1d8c1aa666983","ssdeep":"","tlshash":"172167447a23d032e0bb092f91d3b02c012cd45b525fcadff41d8649f9bfa0a2269643","first_seen":"2026-02-01T05:36:39.325646Z","last_seen":"2026-02-01T19:14:50.201415Z","times_seen":2,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.979Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-2a5\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":677,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (491)","md5":"3eef8c9e589a6fd58292e79bbac4ba5d","sha1":"d3ebdb629b8d9c92380b14b1676b123398f0841b","sha256":"eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4","sha512":"36a72de0983c898c0546cfc2df8863005e688391ce344da6aeb515d49654b3007e614eef6123f222318cabe1004180e63ac32e3bd54884aa5151aec68d129596","ssdeep":"","tlshash":"770170b94795004541910a0038e97b19bd4ad46cbcea7e63e61ade2d0cfa91b11d4f08","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-14T05:47:00.946153Z","times_seen":42645,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.007Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-85b\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2139,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2139), with no line terminators","md5":"6d3b3d63df025e97f370c5efab2c96da","sha1":"78c0c8e7504f9314b2e9fd714bbab530af52f2af","sha256":"8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6","sha512":"7db4d14389ee9e1439365b029b967db05e929e3e8773967d636bf08cec654b30079c1b7dcdde720ce5b8be8694a2ffbdc610f25e537c1954f1d067e837338fd6","ssdeep":"","tlshash":"df412127f4322d3261ff96b56c9eee442923063d48104101b569cb2c357a8c7667bf3e","first_seen":"2023-08-09T05:33:46Z","last_seen":"2026-06-14T04:07:50.946793Z","times_seen":14134,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.543Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 81612\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\netag: \"6601336c-13ecc\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":81612,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 81612, version 1.0","md5":"b4d6b90f14c0441aac364e194978408e","sha1":"142696d43851c8eba0f54c7b94c5f6ebd09703e6","sha256":"6b2680fab784d245cbb23d3b51e8d18740e8fc1c7c1c8eadcf0b2b7612125ff8","sha512":"feab357b65d7302cc6ca2afc86b84851c9b307ba68659fe9e6f7191ff38bdd1d38658e503124b6940f77f5c216b4400c23b8babcd6c13fac2313fa91e5269f09","ssdeep":"1536:mU9FSafiVK4eoDE9kuqu3GbcJuGiZmvfgFrsrr4l1ESfkmS3a+:mYFURoZCMLngsEl1DYK+","tlshash":"678312531fb0ab4ed86e9b3a171d7c3ba4cb2e224b4a704c1d5504068b7ba6d35f45c7","first_seen":"2024-03-11T23:30:43Z","last_seen":"2026-06-14T05:15:23.869151Z","times_seen":78954,"resource_available":false,"data":null}},"time_used":109,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 09 Jun 2023 05:49:24 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6482bd64-3509\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13577,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (13479)","md5":"9ffeb32e2d9efbf8f70caabded242267","sha1":"3ad0c10e501ac2a9bfa18f9cd7e700219b378738","sha256":"5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89","sha512":"8d6be545508a1c38278b8ad780c3758ae48a25e4e12eee443375aa56031d9b356f8c90f22d4f251140fa3f65603af40523165e33cae2e2d62fc78ec106e3d731","ssdeep":"192:5rprDN+sag6ifKIUpQI99P1tLm9kdgyq1+J3aCJQ+h4MPLORq:5rprxaefKI0LP19m4q1WW+h4Mjp","tlshash":"9952c8adb56679724eb721b8f03bd24f71b205de560d8940d19cc4f6282dc6e812bf78","first_seen":"2023-05-09T19:21:05Z","last_seen":"2026-06-14T05:33:28.385995Z","times_seen":834301,"resource_available":true,"data":null}},"time_used":387,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-01T19:14:22.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 27578\r\nlink: \u003chttps://rastaroyesh.com/wp-json/\u003e; rel=\"https://api.w.org/\", \u003chttps://rastaroyesh.com/wp-json/wp/v2/pages/13\u003e; rel=\"alternate\"; title=\"JSON\"; type=\"application/json\", \u003chttps://rastaroyesh.com/\u003e; rel=shortlink\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Underscore.js:1.13.7","description":"Underscore.js is a JavaScript library which provides utility functions for common programming tasks. It is comparable to features provided by Prototype.js and the Ruby language, but opts for a functional programming design instead of extending object prototypes.","website":"https://underscorejs.org","common_platform_enumeration":"","icon":"Underscore.js.png","categories":["JavaScript libraries"]},{"name":"Gravatar","description":"Gravatar is a service for providing globally unique avatars.","website":"https://gravatar.com","common_platform_enumeration":"","icon":"Gravatar.png","categories":["Miscellaneous"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"imagesLoaded:5.0.0","description":"jQuery plugin for seeing if the images are loaded.","website":"https://imagesloaded.desandro.com/","common_platform_enumeration":"","icon":"","categories":["JavaScript libraries"]},{"name":"WooCommerce:8.7.2","description":"WooCommerce is an open-source ecommerce plugin for WordPress.","website":"https://woocommerce.com","common_platform_enumeration":"","icon":"WooCommerce.svg","categories":["Ecommerce","WordPress plugins"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"OWL Carousel","description":"OWL Carousel is an enabled jQuery plugin that lets you create responsive carousel sliders.","website":"https://owlcarousel2.github.io/OwlCarousel2/","common_platform_enumeration":"","icon":"OWL Carousel.png","categories":["JavaScript libraries"]},{"name":"Elementor:3.20.2","description":"Elementor is a website builder platform for professionals on WordPress.","website":"https://elementor.com","common_platform_enumeration":"","icon":"Elementor.svg","categories":["Page builders","WordPress plugins"]},{"name":"jQuery Migrate:3.4.1","description":"Query Migrate is a javascript library that allows you to preserve the compatibility of your jQuery code developed for versions of jQuery older than 1.9.","website":"https://github.com/jquery/jquery-migrate","common_platform_enumeration":"","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Magnific Popup:6.4.0","description":"Magnific Popup is a responsive lightbox \u0026 dialog script with focus on performance and providing best experience for user with any device.","website":"https://dimsemenov.com/plugins/magnific-popup/","common_platform_enumeration":"","icon":"Magnific Popup.png","categories":["JavaScript libraries"]},{"name":"WordPress:6.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":194977,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (8832), with CRLF, LF line terminators","md5":"5b6612a87c3fc8f02cd9fb384d39d516","sha1":"51fd0d49a9f7826d0666f865a1e60ddf8d3f0f3f","sha256":"dcbb328a645e6d549516cef719357140aa93b3f4d630aa515725ba3669fc6f13","sha512":"521859d76c964cce653c668061e5d079b3ebbd0a8768a83b0e47a356c78d1a07eec7512fc0e1a916c25c46f2e932ad623eba67163a05aa566f5d27ca9acf122e","ssdeep":"3072:lTy8tvkjJkVkL+k5c1CT7uu92YlzzhhT6CHXhBaG6Y62i3/E4HuHHOjqpBJ84YHU:lz4IX4c1CT7uS2SzthT6CHXhBaG6Y62R","tlshash":"7a14b7a2ba5e583a131b01df50423f8eb98f9e7ad9a590f1b3fb051c53e1d9236120dd","first_seen":"2026-02-01T19:14:50.206806Z","last_seen":"2026-02-01T19:14:50.206806Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5235,"timings":{"blocked":541,"dns":73,"connect":354,"send":0,"wait":4151,"receive":2,"ssl":110},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic\u0026display=auto\u0026ver=6.9","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic\u0026display=auto\u0026ver=6.9 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 01 Feb 2026 19:14:27 GMT\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":118179,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"f3c22b3d5d28ff4ce6202aba78958bbf","sha1":"5d671a69d511b6106faa9087ef9cdbead2f04af3","sha256":"879e295a3fb7bf0616b0ab90b0e6a1e6406e77a4fa684cf11a391234ef1e2640","sha512":"c25786849d5fd0711187315f24d481a0ba25a6f4bf822c02a5493be5d66e33f236432a82afc0d1c8388b6e99bb3f24f5b1eda41a12e2084d9b8e0c2e1c0445de","ssdeep":"768:yFcFaFvFcFzBFFKFeFOFYxvIxzSFfTDDmUzmz9FEoY+LNuLzEF95ppAiZAzfFSO4:dsh6nIdWzSj0JiHA9+d","tlshash":"96b3fda1041ba440a7831ce223cf7e30ee4f92547181d076ebfdab6badd7d62526835d","first_seen":"2025-11-19T00:22:33.613691Z","last_seen":"2026-02-19T19:11:30.576043Z","times_seen":2675,"resource_available":false,"data":null}},"time_used":380,"timings":{"blocked":135,"dns":1,"connect":21,"send":0,"wait":33,"receive":0,"ssl":187},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/05/%E2%80%94Pngtree%E2%80%94hand-drawn-noise-illustration-green_40585391-1024x1024-1.png","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/05/%E2%80%94Pngtree%E2%80%94hand-drawn-noise-illustration-green_40585391-1024x1024-1.png HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 344526\r\nlast-modified: Fri, 20 May 2022 16:24:00 GMT\r\netag: \"6287c0a0-541ce\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":344526,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"e8a4015cfadc44e7d796e4375e70dcdf","sha1":"9a79d2234befabbaee981b2a728e3ec9c2c0c4ed","sha256":"316d8662f6657ad67494d8b6f8cf0e66936742eb2476da3d0c610b6f5c237099","sha512":"e84bba8f6b76243c0f34ba4019792cbc9bc3fd50968cdae9dc7c988efa40a49b7ce639db9347e1f9568f198cd52f8036b7873c378702c6f53e83e46c819c7507","ssdeep":"6144:itu/02cq4HkoCA91rCRViaT2hAT6DSE5hJgl9sZaD5qei6n9D5b:iM/02B4Eo5ciZA1E5EDWE+q1b","tlshash":"00742303870b8cdc0e7fb6bd9954ccae10a6b206b35c9349163487ade57d95af46fb20","first_seen":"2026-02-01T05:36:39.373747Z","last_seen":"2026-02-01T19:14:50.209492Z","times_seen":2,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":390,"receive":205,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.017Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/js/scripts/wc/updateCartFragmentsFix.js?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-660\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1632,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"80412f3abc385a74ddd5a73046f8b797","sha1":"205cf1b62c43c5d030ca38975a493212c4a0f391","sha256":"245c58a634c44c46561a3c48f7aedcbd8e29ec135faa95f6f73e3887bab39aef","sha512":"4aad56a2f1c21c7dd9244987c5f734d27f274754ad249e7bb79b39664f41b9448298d47d86eacac4b7bd53e7402b5c2f1ec84eb34f7dd9b8e1aace3556366306","ssdeep":"","tlshash":"10318dd7fbec004688923c277e3610fdd13e9471eb9804fa6c1569b82768d98831ad6d","first_seen":"2023-03-07T13:20:51Z","last_seen":"2026-06-14T00:50:39.905834Z","times_seen":1665,"resource_available":true,"data":null}},"time_used":393,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":393,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.20.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.20.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-eb08\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":60168,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (60127)","md5":"b1bbfe6d76282de91b928c20a7eda986","sha1":"2e117329976320b2dcbc120d27c61f207fe13e80","sha256":"b436b03c84fb39a3cb9f9bb41f590e03658e15f504a4ecd2d30130622f7d61a7","sha512":"d834ab892cf6574a8373a4d31dd7a46a763be44d4622e714ac8487145386006860d284a41458699f608da6624b6f6125d9b8fbad0d4ddd0b100cfb1f685b6f75","ssdeep":"1536:LeAjA679C+QRCHXC4WHqMPB8Vx8WXwCDFYNIekHeBHmjkfzRNE4cR8+Sxp6xID1x:Td97W/Clkbx","tlshash":"8f43eb863251b4e70bef40eb602b450af32319e4740eb5987ab8ddf66470d5a237b739","first_seen":"2024-03-20T22:15:30Z","last_seen":"2026-06-12T01:34:36.953387Z","times_seen":405,"resource_available":true,"data":null}},"time_used":381,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":381,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/fonts/yekan/woff/iranyekanwebregularfanum.woff","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/fonts/yekan/woff/iranyekanwebregularfanum.woff HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/wp-content/themes/woodmart/rtl.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: font/woff\r\ncontent-length: 33585\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-8331\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33585,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 33585, version 3.0","md5":"55f541a7c0eaf9c0f7f6641c9eaae8cb","sha1":"d650df0ec28b80051510b81da2482ba61d63601d","sha256":"6d515c362f32004305c6b9dc2def8bf53be870ad2528e42a95b8758ea2585eb6","sha512":"04dd9edf0796aad005ae308b08ea4286641b8138260e5dae023bb58eabea96170863de057e7678504a529118f48fab59964f6de470dc81f0a5b28539dc85a117","ssdeep":"768:UfXQNEcq/Gx0kcyT8FYsyaO46QwMoGmaSTHar0pM:U/QNEcq/Gykc6ObloGmzHlM","tlshash":"b1e2e104c12665d2de3d157d319ea5b9dd0ef8340c37a8064adacac64e53134b8f423b","first_seen":"2023-05-02T07:19:39Z","last_seen":"2026-06-13T09:53:08.998542Z","times_seen":371,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/cat2.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/cat2.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 7072\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-1ba0\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7072,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 262x340, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"89f60b20da957ef8a7ad776c6e2afd09","sha1":"d6db2e01dafae6bc2d802a67b9c8f4d1988616f4","sha256":"d25088a6b4b94f2144f4fc8b203ccfb3fd11f640c71caf0a1b4571d93b59241e","sha512":"7ecd8f2c42bea4e5e7a9c3f301df9bffdfe47ec0d8d352f1557d5408fba5aa427ce9036a13dc19a37fd32b873a5558ecccd3d067b421cbf780b02f259dacfce9","ssdeep":"192:umSfkeDo5Bu2LuMoQ+TF8h7jJFP1oTM3xx:umyD/KuMoQ+0jnPqM3x","tlshash":"3fe18d26af579f6ee33c56ac61c24716c5551e120bdad78ace498f02c2e8c2372d6079","first_seen":"2026-02-01T05:36:39.392387Z","last_seen":"2026-02-01T19:14:50.214428Z","times_seen":2,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-25a4\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9636,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9242)","md5":"ef56117d1bb5cc41aa6bd127a49c7640","sha1":"b9c2ed774177fc0fceba5cb58113024b23fe4fb7","sha256":"d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620","sha512":"0ec9039dbb47470815ad8bf58fd206672717a146b3a99bcb12444687e8489698e06664e6c6cc38a5d2954fa919e5a6c3bc57e44f3be2655f92b801bac43ec763","ssdeep":"192:x9cCxjlRE8iST7TMcPvedRUtV7uLEUfHqo/gH5P5AxTov7fG3ex2NrMP:x9RjlRE8iSf4cPmgtV7uoOKIgxaxTovp","tlshash":"9f12e96831f3215780b7b1907cf7e38f73b2553c648798d1d0acd4692aacd7a2622f09","first_seen":"2023-08-09T05:33:46Z","last_seen":"2026-06-14T05:36:08.520558Z","times_seen":154716,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-6b8\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1720,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1690)","md5":"691a1e43450e7cda541a3bd6f10fd5db","sha1":"d3a78cb77ccec297c9d32fee99a2a4761f604a8c","sha256":"8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1","sha512":"a32ebe942e704da64381e392ffc20ed4f9d8daf71227a06f2dc0ca5c037675ab67e5b5a5ddf9bcb77b1872308daa780cc0e6ec5a2469bcd51444ece4f3b3de0d","ssdeep":"","tlshash":"c031b6d93095a8da06071490463f1207f2f91e27eecd98906264e8f50ab077a01ebf6b","first_seen":"2024-03-20T13:06:17Z","last_seen":"2026-06-14T05:36:08.500219Z","times_seen":134225,"resource_available":true,"data":null}},"time_used":385,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"uka.3sz.ir/wp-content/uploads/2022/01/enamad.png","fqdn":"uka.3sz.ir","domain":"3sz.ir","tld":"ir"},"ip":{"addr":"185.78.22.80","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.239Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uka.3sz.ir","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 18:54:49 GMT","end":"Wed, 25 Feb 2026 18:54:48 GMT"},"fingerprint":{"sha1":"56:DE:4B:81:09:8D:79:5F:1B:EB:4B:B4:94:59:BE:0C:57:C0:D5:3F","sha256":"21:5A:36:19:70:AD:49:14:A0:EB:F0:BA:89:93:B1:32:E2:FF:3C:25:0D:39:02:78:41:2A:A9:64:02:10:27:26"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/enamad.png HTTP/1.1\r\nHost: uka.3sz.ir\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 13600\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-3520\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13600,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"eefaf3da51bee3e88a6cc765858c425b","sha1":"ce035b9d8a2b54294b1a5c12ebe9501bed14e93a","sha256":"73c34b867cace3b2f296aae76cb722f97d776d1154e20df535e9fc372d0cca24","sha512":"db0fdb68b877b712c8ebc399975e11ace7462d0e91081a19824bace7d820de787b1716e423982cdd8bd8e775e4f822a8223be6150c54222dd9a32dfa52dd0ae1","ssdeep":"384:g8ndqK/CXR8myHkxhwZkePv/agv2oJmVBwf3Ms:H797eVBwx","tlshash":"5952bf0cb914b9a26c0bb102bdda2c1e251237c84f95fd54eccbecd778156a78ec56d4","first_seen":"2026-02-01T05:36:39.296961Z","last_seen":"2026-02-01T19:14:50.218442Z","times_seen":2,"resource_available":false,"data":null}},"time_used":547,"timings":{"blocked":182,"dns":1,"connect":86,"send":0,"wait":173,"receive":1,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uka.3sz.ir/wp-content/uploads/Central_Curve_shadow2.svg","fqdn":"uka.3sz.ir","domain":"3sz.ir","tld":"ir"},"ip":{"addr":"185.78.22.80","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uka.3sz.ir","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 27 Nov 2025 18:54:49 GMT","end":"Wed, 25 Feb 2026 18:54:48 GMT"},"fingerprint":{"sha1":"56:DE:4B:81:09:8D:79:5F:1B:EB:4B:B4:94:59:BE:0C:57:C0:D5:3F","sha256":"21:5A:36:19:70:AD:49:14:A0:EB:F0:BA:89:93:B1:32:E2:FF:3C:25:0D:39:02:78:41:2A:A9:64:02:10:27:26"}}},"request":{"raw":"GET /wp-content/uploads/Central_Curve_shadow2.svg HTTP/1.1\r\nHost: uka.3sz.ir\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-12f1\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4849,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8c888f9cb6e833c08cdb935d66f808f4","sha1":"dafcacc740726331d5b9495f4acb0617f3f53eb7","sha256":"ef99409978523db546c0700c6d6e45706577d81ade6f956be9e01768a2e82092","sha512":"38d1d832535f42444c06722df187a32a69388f5855d3a05f8c7d05c140e955f847587040a9535ce7e6ca3e8066f999ea7625ac7d681ba809956a13afcd288a9e","ssdeep":"48:VJYfvMNo7F7JJQHRwzme6mHRwDmeSTixX0uM9kjPK4ppcgSUBqUpUKKRgk6mTnnD:wH4o7FFJQiumKOIJUkMgOUggkTD","tlshash":"bca1732397f5b275a00c033cfbe854a879b0e1978204898cb8ae55609f12e176c9f789","first_seen":"2023-11-11T12:04:25Z","last_seen":"2026-02-01T19:14:50.220544Z","times_seen":11,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":87,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/elementor/css/post-77.css?ver=1711354929","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/elementor/css/post-77.css?ver=1711354929 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:22:10 GMT\r\nvary: Accept-Encoding\r\netag: W/\"66013432-652\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1618,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1618), with no line terminators","md5":"36c00aaefaac4622d1c9ea668c12d8e7","sha1":"7f6de28e3784903d7dfc6d59456ecc90ea8f2d32","sha256":"43c65cc85931e4ccee91458d5d4a78da5bf3aa7a3ac2cdc901cd2156cf8e868a","sha512":"c5d43d841419fe6a3584bb06689ac07c7be4832bffe572428418ddc7635115fdf903c990ab47c61bcaaec3e1384f143c446c8b3b320be9f1c358639516575385","ssdeep":"","tlshash":"a13104693c434524312f662f5123e28c66304cdbc5baa6eef1226933b079da133f2963","first_seen":"2026-02-01T05:36:39.330397Z","last_seen":"2026-02-01T19:14:50.221808Z","times_seen":2,"resource_available":false,"data":null}},"time_used":396,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":396,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-2fa6\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12198,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (12198), with no line terminators","md5":"3819c3569da71daec283a75483735f7e","sha1":"ecd40a5cc6f0b76200c454ca880210dc301cfab8","sha256":"214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0","sha512":"2710655dff46653daeb3a6e3f6d36f885e51d5b375738ee353aca40c6f66ae1a7dece57039d58747012ed9ea2822191143c06f270123b8cc580f6a41b8e8aef4","ssdeep":"192:GngaW9ELBD26z861V/CvJiVKIsvfT+6EdpEsBpP9Qwo7Q4a99RfuzqXppc4mmm9t:Ggz9kBD26861V/wsVKIsvTEdpEsnmwoz","tlshash":"994221493e0724222faf41f9fc1b468a632b013894c584bbb8e4d5dd18f19296f77b78","first_seen":"2023-03-07T01:02:08Z","last_seen":"2026-06-14T05:05:19.942007Z","times_seen":70732,"resource_available":true,"data":null}},"time_used":370,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":370,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/uploads/2022/01/cat1.webp","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/uploads/2022/01/cat1.webp HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nCookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2026-02-01%2019%3A14%3A27%7C%7C%7Cep%3Dhttps%3A%2F%2Frastaroyesh.com%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Frastaroyesh.com%2F\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 11656\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\netag: \"6287bf4a-2d88\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11656,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 262x340, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7e09e24a9f97874fbef9038e68463f3c","sha1":"c8d8da1cb6305fb0fc3cab0b43fc8986daf5732f","sha256":"8b90c14bba15a5db265dc72527f70b409525581a6af07e73d53728f6e84c165c","sha512":"2186406c990faddafe3e5d9f36755c22111d3a8aed33fbfc087a269a3223856612f3e24d5ec7c50382a4dac278d3cbfef7999038e5faaf32252590f8f6e2db10","ssdeep":"192:mQiKxCN/P5jNrC2C7Oy8IaiBVlZVp2lW1DGBmjsD08x7K8:x/xIH+2C7Oy8IaidZ6lW1SB2sDpH","tlshash":"fc32c0be1109a9741f85e2f6b94a4da6d5b5de934b36c296df8168f22120038073f2ec","first_seen":"2026-02-01T05:36:39.35001Z","last_seen":"2026-02-01T19:14:50.224647Z","times_seen":2,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":109,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/swiper/v8/css/swiper.min.css?ver=8.4.5 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-4057\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16471,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (16214)","md5":"a2431bc290cf34e330e11ec4cfce1247","sha1":"32a53342901fef5f4f4dbb26a555e730f84437a4","sha256":"c57e64fcb72bddafa9c38de574441c3e69ac6c961df96b0cad34da83658bd196","sha512":"87aef045472db25020faead697ec02813ba38d4e313caf437b4ca5cadbb7a7495805ac0b74e5de60cd84ccecab290b76d003eb1fadfcdaa70e650a597658ada9","ssdeep":"192:IbgmUJbiKneTT4bHZ+SKbnxup/a2AMQfHff71eesedOJ9A5Pz+c3At2/6:IdUbeTMbHZ+Vnh2AVfHfA4XYz","tlshash":"fa7234681340282753274f374b71cbb9d9b444d24b93896e91c0ee88d7b6cbd236f6e9","first_seen":"2023-04-05T10:48:11Z","last_seen":"2026-06-14T05:35:39.196823Z","times_seen":126886,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-b7b\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2939,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2939), with no line terminators","md5":"ae52867db002b2f95a21b85b3b518a04","sha1":"4b1615786f2e5240bec4229c7dc5c6f865c92ebe","sha256":"592acc60b8eea94fc366110175d8406604a609201d6debe5eb008a6debfbdc3b","sha512":"cb641d54680e78ff8f575ca1746319f42acba15c3422bb40f011421545ac0647cad018635834fc9ed553c7a61e0789d329c18a774d1dcd5fdb52d207e69768cd","ssdeep":"","tlshash":"7551321fb0208e9618b3187e613a719622329d69f2098670a015dca42eece4b1777dcf","first_seen":"2023-08-09T19:51:14Z","last_seen":"2026-06-14T05:33:28.447102Z","times_seen":54928,"resource_available":true,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:26 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 25 Mar 2024 08:18:52 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6601336c-29d\"\r\nexpires: Sun, 15 Feb 2026 19:14:26 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":669,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (483)","md5":"9eb2d3c87feb6bb2ffa63b70532b1477","sha1":"38f226335a05ab0e30497bc7419eb5e243a9e26c","sha256":"37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2","sha512":"8d0ab38f6bc757103fc82a234fca5566328639ef549a862f9ceb8cff6b10d75d2fc626a3054fb85a4c91b3538332677801f9edc14115e09f957cce8391f8cb46","ssdeep":"","tlshash":"ce01f96e4646194141c10f1138d9fa5ded46f0a97c582f33a12adc2d8cf9e5f21b9f19","first_seen":"2023-04-05T04:00:29Z","last_seen":"2026-06-14T05:30:28.74377Z","times_seen":97915,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/themes/woodmart/css/parts/base-deprecated.min.css?ver=6.4.0","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:26.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/themes/woodmart/css/parts/base-deprecated.min.css?ver=6.4.0 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 20 May 2022 16:18:18 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6287bf4a-4bd\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1213,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1212)","md5":"2d3db47ef1522c46bc89e3bf335d74ba","sha1":"ea48ac49793aa5e0286feee082178a60694644e0","sha256":"8379c8cfc6d7d759a71433dccc3458ca992c5dd072be184b0d7bf5c441444710","sha512":"daaac31f066cc41e14cd8f7ea6ecd3b194ce838db4450e33782c4309721418bfa67a904441adf99276804a61ca9ded1b1d6d8052fba2a6b221ec8eec17b0fdf5","ssdeep":"","tlshash":"22218e95f31ca0a71567961efb08f4980db4e9226549dff2f499151898c32a72290b7c","first_seen":"2023-04-07T00:04:28Z","last_seen":"2026-06-13T14:05:41.616171Z","times_seen":317,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":299,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rastaroyesh.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.2","fqdn":"rastaroyesh.com","domain":"rastaroyesh.com","tld":"com"},"ip":{"addr":"94.232.169.207","port":443,"asn":48434,"as":"Tebyan-e-Noor Cultural-Artistic Institute","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rastaroyesh.com/","date":"2026-02-01T19:14:27.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rastaroyesh.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Dec 2025 08:01:22 GMT","end":"Wed, 25 Mar 2026 08:01:21 GMT"},"fingerprint":{"sha1":"20:BA:40:B4:C2:4D:00:63:A9:D0:FD:F0:69:FB:1D:1E:D4:1A:4E:28","sha256":"3D:1A:A9:08:2B:F1:34:C8:FC:BD:8F:E7:10:FE:BC:4B:AA:63:0A:8A:DC:B2:F9:1F:0B:29:DD:4F:AE:9A:F9:C0"}}},"request":{"raw":"GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.2 HTTP/1.1\r\nHost: rastaroyesh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rastaroyesh.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 01 Feb 2026 19:14:27 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 25 Dec 2025 09:22:35 GMT\r\nvary: Accept-Encoding\r\netag: W/\"694d025b-5e5\"\r\nexpires: Sun, 15 Feb 2026 19:14:27 GMT\r\ncache-control: max-age=1209600\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1509,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1509), with no line terminators","md5":"d135f91be7d973a9f688aae99ae5b86e","sha1":"59c1a7ece70b5f3ded1cde917ac7991723964402","sha256":"9d8a587ab4a60001f720cb0833192cccd56e583a8df7774c292acb907d6078fb","sha512":"794838b164c35a0d1bec0f3953e22a538fc0ae93a518e7ec4a0f8a637fd8b8aa5bda8c41867257cf2b73b23e33f365f6e20d5a42af95f725cbf7189f4a0d29c4","ssdeep":"","tlshash":"9a3112257051e829cb7347dd7b9fa6013236b9163a43f404414c8cb43a72e2b7966c4f","first_seen":"2024-02-16T12:17:05Z","last_seen":"2026-06-13T12:32:45.109655Z","times_seen":2730,"resource_available":true,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-01","alert":"Phishing Block","trigger":"rastaroyesh.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"rastaroyesh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}