{"report_id":"fb1f75eb-be6d-4d72-87ae-9d1bd9c2748c","version":6,"status":"done","tags":[],"date":"2025-12-23T04:18:07Z","url":{"schema":"http","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":0,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"title":"OrdexiaGPT ™ - The Official App WebSite 2025 [UPDATED]","dom":{"size":51410,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3682)","md5":"28981f5c68906594cb0d7f31b9dc54be","sha1":"d295f13dd00b14fa0c6fbf6dbdc234031814cd99","sha256":"43dc43f0e76f596d6f3e151417450e9ec0f6f9bee43edc63c67d9e1b450b53e2","sha512":"5924e06ed406e22fba8bcf43f1618c9fe4f71b8d7823784e94436ed4fd80ea8e5f42b543d6c17d7b57799b2f9fbe8c3c7019a6a7018632be30f34d467ef3d1b9","ssdeep":"384:9byD2GipyKM4EAnWYehoxV0Itbh+LPD8WaAhtyUqxe3+vMULgervoWX16MA:VyD2GipyKM4flToLRhuy+vaPnMA","tlshash":"fd33822a50f0053e129784d63ab1af1eefd5e90bd64e5a1177ac47a80fc3e82dc33659","dom_hash":"domhash2a2fcdb56d170af7a5931858a3202784","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":0,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-27T04:18:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ordexiagpt-pro.com","ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":7,"request_count":7,"received_data":141485,"sent_data":3386,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-12-21T22:14:03.270461Z","alert_count":0,"request_count":3,"received_data":26218,"sent_data":1713,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-12-21T22:20:20.869237Z","alert_count":0,"request_count":3,"received_data":124978,"sent_data":1551,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-12-21T22:17:07.06462Z","alert_count":0,"request_count":1,"received_data":6756,"sent_data":514,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ordexiagpt-pro.com/assets/languageSwitcher.js","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"6dd666393aca76e7608e5ea0886102ae","sha1":"dc2f00219490ff31cbcbf1148e1a8e936aaf0531","sha256":"65baaf73001c13bbb1ae1934c4267e35f27855d25a0f2d2ac3dd20f0df6d66ba","sha512":"c48a2ee43e933e208bde25a512471e35b4852ef005561cdac60c13736916026de413079b6f3fbbfd63f04978a80273e2c68c48420ae78cd05b8e43fa17fbb438","ssdeep":"","tlshash":"34113d2f32f1083520ef61a733e72694b09440cf99056d1a372d9e9c0fdecc256b1ad5","size":1109,"data":"","first_seen":"2023-07-24T11:10:56Z","last_seen":"2026-04-04T03:46:30.908341Z","times_seen":2282,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87533,"data":"","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-04-04T06:46:26.368316Z","times_seen":136211,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"4980031e4b346ed8240ca0835f5b298a","sha1":"ac99d11eb90198d7b99debdcb64643598adda393","sha256":"9f4be30877f82794f5a66e05d086eb6e61f9a0427c8972c0f8f1455643828b1b","sha512":"6ddf8d4cbff8a73d0490c517e93a23465be9f072135baf901add54775ef567b960e3389c0eb2d5084998d64f10b0c6982ae4a12d346e4b5efc1ebefbe4ee017b","ssdeep":"","tlshash":"49d08cf920a01047b001688c054e20043086131b8c5038643bafb32c2f3a20e84fa35c","size":201,"data":"","first_seen":"2025-12-23T04:18:11.522351Z","last_seen":"2025-12-23T04:18:11.522351Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"54ccea13a7fc17f613d3f1f457a1f7d4","sha1":"78fffc097ddb1943ae55206b846d734affbedb7a","sha256":"6d49858587d9c0f9071ae030498b4dde80c57575a6e9023e9fb03685897871fc","sha512":"11f0ccadf190da4961f1a2b4aade97c2720e47718a055daa99a65c3c40590015e8024b95acd898f852b359aac8a35e1f2aab840ea39df84e25061e223e7e655e","ssdeep":"","tlshash":"3ef02e3b37156037863760ec5bdb93d03960148b6003c4693daccb4a1f519960d76dbf","size":647,"data":"","first_seen":"2025-12-23T04:17:08.889731Z","last_seen":"2026-03-07T04:47:19.316383Z","times_seen":22,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"4e60ac6f3939fa90daa2241cb710ac38","sha1":"7292d18e3aa9bec7a518e84afc783f831f693dcf","sha256":"836a95b2d0e9da0969e38f4aa50a9d5e76ed6f7c01a1a8d8a0815687db8f992f","sha512":"f8492de38e97ed582093b8aab72dc0c239d3b644b970f491ad4bf89609596cc9363f3d0152275b143acc6b6a82c0def408a6057b105e529f9ec39ad45e2c5ca3","ssdeep":"","tlshash":"6231259d2536037420e3efde67878300b92110cb720ce9057d7c8d749faa946d5a36e8","size":1621,"data":"","first_seen":"2025-09-21T22:09:24.783864Z","last_seen":"2026-04-04T03:46:30.922634Z","times_seen":826,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"eventHandler","is_inline":false,"md5":"7c3c3ddeb80438dcbb3d081d2d00e152","sha1":"5a4016732ee72ec77b4f6ab17047bcea6d2ea34d","sha256":"321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187","sha512":"b252f7dc795284fe8ce404711809130d8e16670a8e49b271f9a24b04a542a0fccb7a8c7238c12b37db35fe73a2fbf1cdb374468574db4e6d39975a17dca547a3","ssdeep":"","tlshash":"de6000f0003000000003c30000330cf300000c0f00ccc30cfc0000c000c00000000c03","size":16,"data":"","first_seen":"2023-04-10T15:57:29Z","last_seen":"2026-04-04T06:43:24.234128Z","times_seen":233226,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/api/dist/js/loader.js","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"004a85a2f229a6055b37250fe4afb301","sha1":"138603702c8829dc64ac7d3d39e16680da0df5c2","sha256":"653a448c69253dc5b67cdf5fd1a1982f30ae00e1c81e22c2e301f7fd66e64e95","sha512":"82ece4bb3f156d0ae344a60e527b85842bf2f66e122d3bc3f580f948b6763cb1239636f05b3a8238a557817094b63a1ef1b4b420a9ea072671eab062260499cd","ssdeep":"192:24RjZ8HAHfh+ObfCKz35tlAXqNlq6JtCL12sqqqtr4UcIQD8M:3jZP/rw1stCjm8UoJ","tlshash":"e01273cdb2c7f45503a37635901f100af23e596ab40d9455e629e8e2bc7885ea327fac","size":9817,"data":"","first_seen":"2025-10-28T03:54:14.970656Z","last_seen":"2026-04-04T03:46:30.86211Z","times_seen":1628,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"eventHandler","is_inline":false,"md5":"7c3c3ddeb80438dcbb3d081d2d00e152","sha1":"5a4016732ee72ec77b4f6ab17047bcea6d2ea34d","sha256":"321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187","sha512":"b252f7dc795284fe8ce404711809130d8e16670a8e49b271f9a24b04a542a0fccb7a8c7238c12b37db35fe73a2fbf1cdb374468574db4e6d39975a17dca547a3","ssdeep":"","tlshash":"de6000f0003000000003c30000330cf300000c0f00ccc30cfc0000c000c00000000c03","size":16,"data":"","first_seen":"2023-04-10T15:57:29Z","last_seen":"2026-04-04T06:43:24.234128Z","times_seen":233226,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ordexiagpt-pro.com/css/custom-BhsQR0MN.css","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /css/custom-BhsQR0MN.css HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: text/css\r\ncontent-length: 17847\r\nlast-modified: Mon, 22 Dec 2025 17:09:53 GMT\r\netag: \"69497b61-45b7\"\r\nexpires: Tue, 30 Dec 2025 04:17:45 GMT\r\ncache-control: max-age=604800, max-age=604800, public\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17847,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (17845), with no line terminators","md5":"d909ebed08caeec475f991c0b2eb2499","sha1":"38387c65fed7596847a309a2b379b7112999c282","sha256":"d136ca4bbda41fe12a66d0baa18f8a3ec858cb1c3327eeba93c7ce6d484221e9","sha512":"e4e28bfb8b4699f0edf580ca25a605c182960ab10b0eb3f2b43861f4909b08303ce4f008163c9a597d1adf852343810497b9b7339ff855ffb8a39e92d53dbbd2","ssdeep":"192:EvAqHTJZFfvVzKBd4jlOIZ3CcOrKlW5QNWMo6kk//8Qf4skQOtTbc2Fdmov94AT:a/tZ1oBi1+bmoF","tlshash":"9782e9686684e13db43be189a3e0e98c453ce905ed130bfdb1457166dac7bfb09b2709","first_seen":"2025-12-23T04:17:08.882944Z","last_seen":"2026-03-07T04:47:19.308936Z","times_seen":22,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/assets/languageSwitcher.css","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /assets/languageSwitcher.css HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: text/css\r\ncontent-length: 2630\r\nlast-modified: Mon, 22 Dec 2025 17:09:52 GMT\r\netag: \"69497b60-a46\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2630,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"34f9a98a85713580849f35db50174b74","sha1":"f7d7c21843e2df3ec700d6564d092aaa9c9ec298","sha256":"8ea67b667dec3a3e1f29bed71a5f30c4338465e05f880586f2cb970159996e39","sha512":"ea323ed32f9e2e4e6ed5131fa92dc146b39a68d9dc1e7f1ccc1126e28c81c3a19fcdb84b580f2f80f673bd21f34eba1519cedb3d4f34c4f0ac9bb03eb29ecad5","ssdeep":"","tlshash":"c351f05b565305a9740fd90a6fd87f4193e4804b950ff9a6bfc221088f8b2ccc46278b","first_seen":"2023-05-17T09:57:09Z","last_seen":"2026-04-04T03:46:30.899111Z","times_seen":2245,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/assets/languageSwitcher.js","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /assets/languageSwitcher.js HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 1109\r\nlast-modified: Mon, 22 Dec 2025 17:09:52 GMT\r\netag: \"69497b60-455\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1109,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"6dd666393aca76e7608e5ea0886102ae","sha1":"dc2f00219490ff31cbcbf1148e1a8e936aaf0531","sha256":"65baaf73001c13bbb1ae1934c4267e35f27855d25a0f2d2ac3dd20f0df6d66ba","sha512":"c48a2ee43e933e208bde25a512471e35b4852ef005561cdac60c13736916026de413079b6f3fbbfd63f04978a80273e2c68c48420ae78cd05b8e43fa17fbb438","ssdeep":"","tlshash":"34113d2f32f1083520ef61a733e72694b09440cf99056d1a372d9e9c0fdecc256b1ad5","first_seen":"2023-07-24T11:10:56Z","last_seen":"2026-04-04T03:46:30.908341Z","times_seen":2282,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://ordexiagpt-pro.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7816\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 17 Dec 2025 00:02:41 GMT\r\nexpires: Thu, 17 Dec 2026 00:02:41 GMT\r\ncache-control: public, max-age=31536000\r\nage: 533704\r\nlast-modified: Mon, 15 Sep 2025 16:35:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7816,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7816, version 1.0","md5":"25b0e113ca7cce3770d542736db26368","sha1":"cb726212d5d525021752a1d8470a0fb593e0c49e","sha256":"9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526","sha512":"a0d331e62ab4727f49ca286a1ee7fb81cddc5bb9edf71ef84f4bd4fa1552069af1a82752011ba88fae80862d034135926b7e99d70e59d626d66d4ede90e94c30","ssdeep":"192:Agw5ksLwlyK8F2BXU96Fc575OI3+ga534SlEFwTG4ovej9be:Al5y8FSUMS5VOq1KISlvS4ov+4","tlshash":"a3f1af19d5de5a73f80032b45b6911ba7e42fa83bc68bbedf8046a10ad542cb467cc91","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-04-04T06:46:33.140612Z","times_seen":203534,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":103,"dns":4,"connect":27,"send":0,"wait":16,"receive":2,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v15/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/poppins/v15/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://ordexiagpt-pro.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7900\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Dec 2025 19:14:26 GMT\r\nexpires: Fri, 18 Dec 2026 19:14:26 GMT\r\ncache-control: public, max-age=31536000\r\nage: 378199\r\nlast-modified: Thu, 05 Nov 2020 22:02:01 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7900,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7900, version 1.0","md5":"9ed361bba8488aeb2797b82befda20f1","sha1":"6f80d965a066aff81c0a344d4b7297bd009cc099","sha256":"41e46faff74c6a77d581689ec35eb040f6c96d17f4d2c5b25dccd42ed498b01c","sha512":"a445d1850d9a03b32944586b426c1eb0e3cd42ad24d4c029e993f37c11cd24680fe9c354425a9d6a84fef27a9e06704108d845f74c204c5bec5a95f50cf50bd6","ssdeep":"192:p7uo9HQkQLb61fpJohI/gCvwsd2pbbhKn:p7v9wkYbkfpJPIqdyhK","tlshash":"33f1c0d24f50e68ffb9ba63a5c1ec3724dcea0a521c5e87c39c81c0bd269d13597c144","first_seen":"2023-04-08T01:54:40Z","last_seen":"2026-04-04T02:23:53.836237Z","times_seen":4576,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":112,"dns":0,"connect":28,"send":0,"wait":16,"receive":2,"ssl":85},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 1466\r\ncf-ray: 9b250d157c9c1a30-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e5d-841a\"\r\nlast-modified: Mon, 04 May 2020 16:10:05 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 351145\r\nexpires: Sun, 13 Dec 2026 04:17:45 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ovW1oJxabSmAdunN5NUA%2Bg9udp71qUFeGcyUXSw0q8gqaPQFarAczMiy6SaN2VCT6q0Fer4dbkI%2FLLGNAIBGPaQ65r9t6LRlhXqqgrjqJI5wmHFcTnVBYFfG2XywD5s8V56bQZxk\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":33818,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (33818), with no line terminators","md5":"79fb36dda0a235254c3e31bf00b57065","sha1":"89eb6d6adc16de57dda315fb2b5602bfe5728ccf","sha256":"623702bd791d4553ae7226c2f48e26052e359573eb59fa98d819e9b248593e7c","sha512":"c5b2a3dfc61a9b039ad72c82f604c52c4c616db57aafc599c1a11861869e75f534828b10ba772fea9ffff737232b534eda7915fcdbf95f94e433fce33a795cfb","ssdeep":"192:o5B9y1dbzi85+DkROJup2j0S+iSM2nTMVZVJggtfQxK/dySeOW:ldK85+DkROJup2j172nTeVJgAfQxOBW","tlshash":"dae2f963da83e41fb60756337a167618a3df2492db814f2a34bf52b1d576244343afb0","first_seen":"2023-04-05T03:09:34Z","last_seen":"2026-04-04T03:46:30.902035Z","times_seen":6161,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-23T04:17:45.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: text/html\r\ncontent-length: 51291\r\nlast-modified: Mon, 22 Dec 2025 17:09:52 GMT\r\netag: \"69497b60-c85b\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]}],"data":{"size":51291,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3682)","md5":"bfc1dd772d25c63d374edfab049776ae","sha1":"1be7ac88e4626eaba7d8c252b5380ec6990ee7e2","sha256":"16b8e37c39dce2c0a96a0349f44a084cf40344ed30b66f0210206e7291480c7e","sha512":"0542f98399323d48fa5a9261c03d04229585e4d92f44d8366fc44934fd6463da794b062e0bf436cce2b80a3a61ace7b5e994b1bfdcf2de76e2602a1e6aa21592","ssdeep":"384:CnD2AjYRbM4EAnWYeh+xV0IpbhDLPD8WaA9tyUqxe3+vMULgervoWX1AvB:CnD2AjYRbM4fPPBLR9uy+vaPTvB","tlshash":"d633822a10f0153e129780d63ab1af1eefd5e907d64e5a1177ac47a80fc3e82dd33699","first_seen":"2025-12-23T04:18:11.51339Z","last_seen":"2025-12-23T04:18:11.51339Z","times_seen":1,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":70,"dns":3,"connect":28,"send":0,"wait":54,"receive":29,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/api/dist/js/loader.js","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /api/dist/js/loader.js HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 3530\r\nvary: X-Internal-Proxy,Accept-Encoding\r\nlast-modified: Mon, 27 Oct 2025 22:35:58 GMT\r\netag: \"2659-6422b85ea0f80;63b9f3bf4c600-gzip\"\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncache-control: max-age=432000, public, must-revalidate\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9817,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9753)","md5":"004a85a2f229a6055b37250fe4afb301","sha1":"138603702c8829dc64ac7d3d39e16680da0df5c2","sha256":"653a448c69253dc5b67cdf5fd1a1982f30ae00e1c81e22c2e301f7fd66e64e95","sha512":"82ece4bb3f156d0ae344a60e527b85842bf2f66e122d3bc3f580f948b6763cb1239636f05b3a8238a557817094b63a1ef1b4b420a9ea072671eab062260499cd","ssdeep":"192:24RjZ8HAHfh+ObfCKz35tlAXqNlq6JtCL12sqqqtr4UcIQD8M:3jZP/rw1stCjm8UoJ","tlshash":"e01273cdb2c7f45503a37635901f100af23e596ab40d9455e629e8e2bc7885ea327fac","first_seen":"2025-10-28T03:54:14.970656Z","last_seen":"2026-04-04T03:46:30.86211Z","times_seen":1628,"resource_available":true,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/api/dist/css/integration.css","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.722Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /api/dist/css/integration.css HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: text/css\r\ncontent-length: 9298\r\nvary: X-Internal-Proxy,Accept-Encoding\r\nlast-modified: Mon, 15 Sep 2025 12:06:23 GMT\r\netag: \"cf15-63ed5d5038dc0;63b9f3bf4c600-gzip\"\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncache-control: max-age=432000, public, must-revalidate\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":53013,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (53013), with no line terminators","md5":"b7699108ae9af3a8e93cfdb2930c5776","sha1":"1a119b393f62b09498ed2ae38256b8451eaee4d2","sha256":"b9c598602805d51e2c7eec8f1cf6c5a43af1f4109808bb935ef0b47c4af8f8c1","sha512":"891488031a287944044d74eff223fdeeede14a419a0a8c2f774db74a301f773430acc77d2552261f7b2785e4f10f4b6e0d9c4ddab8bbc46182537d9c2389bad9","ssdeep":"768:v2SAXXK6jU+4bixaACaglUX1OD6m+7KPSuWeA:ujXnYtUXwD6m+7KPSDeA","tlshash":"0a33111349a2242bf637c5a521a0da593667cc07fc360f6e9514fe7c8b839dd18b2be1","first_seen":"2025-09-17T17:38:44.36685Z","last_seen":"2026-04-04T03:46:30.863396Z","times_seen":1929,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.67","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:54:11 GMT","end":"Wed, 25 Feb 2026 15:54:10 GMT"},"fingerprint":{"sha1":"21:10:1E:48:79:6B:E7:49:AB:BB:0E:38:86:C8:4D:74:7B:42:EE:BB","sha256":"0A:58:99:06:D8:BC:1C:BD:3E:CE:EF:7D:D6:D2:50:2D:1E:DE:8F:87:97:56:72:B9:3F:21:88:AC:79:3A:75:03"}}},"request":{"raw":"GET /s/poppins/v24/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://ordexiagpt-pro.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 8000\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 17 Dec 2025 00:05:02 GMT\r\nexpires: Thu, 17 Dec 2026 00:05:02 GMT\r\ncache-control: public, max-age=31536000\r\nage: 533563\r\nlast-modified: Mon, 15 Sep 2025 16:33:57 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8000,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 8000, version 1.0","md5":"72993dddf88a63e8f226656f7de88e57","sha1":"179f97ec0275f09603a8db94d4380eb584d81cd5","sha256":"f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149","sha512":"7c20165f9d22a86341e841fd58526209017dcde2afe2d0d2a89fe853d95dc69f658d25cf798c71f452dab09843fc808c1ae87a60b1284134163abf5a1d93e50a","ssdeep":"192:GDonmfrEdXT8WrxzRXwyQo3zGEOM7Y2hOMgWnsfYSjv4ENFGwrlKJ:8onPxTzjgyQSzLPXOTIYHJAJ","tlshash":"08f1b0ffa92456c4df692475a5044f27623652b4dd35cb2f496f3e12d2d74224bcc4c1","first_seen":"2023-04-05T18:53:14Z","last_seen":"2026-04-04T06:46:33.152289Z","times_seen":203213,"resource_available":false,"data":null}},"time_used":192,"timings":{"blocked":83,"dns":0,"connect":15,"send":0,"wait":16,"receive":1,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ordexiagpt-pro.com/images/favicon.ico?v=1766423390","fqdn":"ordexiagpt-pro.com","domain":"ordexiagpt-pro.com","tld":"com"},"ip":{"addr":"185.62.56.51","port":443,"asn":62370,"as":"Snel.com B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ordexiagpt-pro.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 22 Dec 2025 16:14:52 GMT","end":"Sun, 22 Mar 2026 16:14:51 GMT"},"fingerprint":{"sha1":"5A:4C:D0:7C:20:02:74:B4:BF:00:51:B2:38:27:BC:DF:97:0E:C3:7B","sha256":"01:26:2B:F4:1B:C4:70:9C:88:EF:EA:F9:23:9C:E6:2C:0E:29:04:AA:FC:72:97:C4:BE:55:C9:0B:A2:50:C7:21"}}},"request":{"raw":"GET /images/favicon.ico?v=1766423390 HTTP/1.1\r\nHost: ordexiagpt-pro.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.14.1\r\ndate: Tue, 23 Dec 2025 04:17:46 GMT\r\ncontent-type: image/x-icon\r\nlast-modified: Mon, 22 Dec 2025 17:04:59 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SC4bLBCpYgrCDrIQwqx9%2B%2Ba5TZIgI7XNLybgFlpZM9SBBP7zMhyvsyUahUOb5A0RaFGBKCetsdaYVmXZK61s5utE2daU26uM1vxU5RkEiUX5CUA%3D\"}]}\r\nage: 2895\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"69497a3b-c90\"\r\ncontent-encoding: br\r\ncf-ray: 9b250d167bb50bbd-AMS\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nginx:1.14.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3216,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"eef8c9d2758f4e5ba78cc1ce7ae571ac","sha1":"809d757c48dd68de72bb9ce37a4fda9eefe759f4","sha256":"02c48ceb623ef7fc395d452676b0fcf12b61853ba6f4749811e26be3cb059375","sha512":"375fcbe83d4ff43384bd7e6c19ec7787c31aaa7704fa1118283cbeba74c37532d48f686ff9404a13ff4e642bd390b8d959e249f59f892f5113584939ff5c0b49","ssdeep":"","tlshash":"43616c08e2fa18816c55c199a483687afdf8c6bc5b48cef1ad72d046739b59a283501b","first_seen":"2025-06-04T01:23:51.341493Z","last_seen":"2025-12-23T04:18:11.517567Z","times_seen":2,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-12-23","alert":"Phishing Block","trigger":"ordexiagpt-pro.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/flags/4x3/gb.svg","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/flag-icon-css/3.4.6/flags/4x3/gb.svg HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.4.6/css/flag-icon.min.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: image/svg+xml; charset=utf-8\r\ncontent-length: 307\r\ncf-ray: 9b250d164d571a30-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e5d-21a\"\r\nlast-modified: Mon, 04 May 2020 16:10:05 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1568952\r\nexpires: Sun, 13 Dec 2026 04:17:45 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=ZjBzfQ5D10vCeolL%2FcX4iJxpEsAiuX22NS2MbygSVfuusHPwJ%2BHFPMo01zZ735a9hO5p0rOs%2Fa56GP0%2B8dZ40cnr%2BR6WqihsazGTt7YhbII8K%2FNNTPExENTLDEzyxsK8dgwCxAGp\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":538,"size_decoded":0,"mime_type":"image/svg+xml; charset=utf-8","magic":"SVG Scalable Vector Graphics image","md5":"d3ddd6025a06a78535b0d432d14905bf","sha1":"2b5148a18b90f933e47bf895c26d61a52d21d9d8","sha256":"825310f9bcc8892559317bfc87fc28d5d7bad06c02d562b5740aafcf4b040803","sha512":"618481c44206c46bf35212f5b2206457c641417ce2bd575867eb6cf43776a7e363ae7aef7ce339d304c4d73a1054b1d5f6c5ebf6f8d8dbf2bdf41d442e2e33ad","ssdeep":"","tlshash":"d2f0c9d8c72c3044c70a97105cacb8e3d4d9a1cd999004eab8e09ae460a9b97dccadd1","first_seen":"2023-04-07T07:31:08Z","last_seen":"2026-04-04T05:57:15.53125Z","times_seen":4107,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 03 Dec 2025 15:53:13 GMT","end":"Wed, 25 Feb 2026 15:53:12 GMT"},"fingerprint":{"sha1":"A8:BA:6B:80:7C:EC:B1:6F:C1:C2:03:D7:C9:27:6E:75:DE:4B:AA:47","sha256":"4E:2C:B9:C5:81:56:5E:97:93:07:22:12:66:E2:52:C6:0A:2E:17:72:FF:9B:5F:2A:B9:E1:21:80:05:6D:8B:3D"}}},"request":{"raw":"GET /css2?family=Poppins:wght@300;400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 23 Dec 2025 04:17:45 GMT\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncache-control: private, max-age=86400, stale-while-revalidate=604800\r\nlast-modified: Tue, 23 Dec 2025 03:51:42 GMT\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5993,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"9c51d4ed0528132b3a6be429dca636b5","sha1":"18cc681e66f5b6696a4ff89774e53aef2a51af00","sha256":"45a8505a86014b27b96db52f81bf4dbced7a8eb9b419d28e89bcfccb334b49b2","sha512":"3fa61799ef336da5f4c9a0a0fcf7d14fdb09e2e18cbc1488eae44a06b61beca3831c9eadd77b22a16a84e8041074d74d51429e23a1a6e8ce9b56860ed682e800","ssdeep":"96:SO1arO1aTJc+ukO1aaN3OEanOEaCJc+ukOEauN3OXa3OXavJc+ukOXaON3OxMac8:4hHdPgKQcXr3lVwa3RzJZ","tlshash":"15c19cd1087be114ab831cc123cf7d36ee1e9255b810e5786bfd0c98adabc654362b2d","first_seen":"2025-09-17T11:27:36.868673Z","last_seen":"2026-04-04T05:37:03.984467Z","times_seen":5615,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":85,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":80},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ordexiagpt-pro.com/","date":"2025-12-23T04:17:45.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 15 Nov 2025 20:49:06 GMT","end":"Fri, 13 Feb 2026 21:49:04 GMT"},"fingerprint":{"sha1":"9A:71:C8:6F:E2:4B:9A:91:7D:C8:4A:1D:79:98:2F:97:C1:85:D8:79","sha256":"4E:C5:BB:7A:81:A0:D9:00:73:8D:D5:57:59:3D:A0:C3:D3:BE:62:18:4E:6F:6D:98:DA:F0:90:94:5E:E0:0B:63"}}},"request":{"raw":"GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ordexiagpt-pro.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Dec 2025 04:17:45 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 27446\r\ncf-ray: 9b250d13bb9776ef-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"64ed75bb-6b36\"\r\nlast-modified: Tue, 29 Aug 2023 04:36:11 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 275978\r\nexpires: Sun, 13 Dec 2026 04:17:45 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=POWsgYCkRVuLkodmE%2BK%2BUtb%2F8fAzHtB904rs9mImYro8CqQgAwhoISZYCRz4jaOEfg4a5Vj3Sf5DlzaAN%2Fe6meD9E45O%2FCRCgLV2479HBBFkbTHle%2FsySQEUEQoy4%2FEDqwTb4G%2Fl\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":87533,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-04-04T06:46:26.368316Z","times_seen":136211,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":18,"dns":1,"connect":1,"send":0,"wait":10,"receive":6,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}