{"report_id":"034a079a-e4a6-49ef-a7df-f580ae949a84","version":6,"status":"done","tags":[],"date":"2024-10-04T07:13:02Z","url":{"schema":"http","addr":"reminderasking.com/qu8nugnpy?rixohm=53\u0026refer=https://pikahd.com/\u0026kw=[\"pikahd\",\"-\",\"anime\",\"movies\",\"series\",\"hindi\",\"dubbed\",\"+\",\"english\",\"dubbed\",\"subbed\",\"in\",\"japanese\",\"-\",\"japanese\",\"watch\",\"or\",\"download\",\"all\",\"for\",\"free\",\"with\",\"english\",\"subtitles\"]\u0026key=690fc7e48c3c552d2ab73d1fab3999f6\u0026scrWidth=424\u0026scrHeight=942\u0026tz=5.5\u0026v=24.8.8162\u0026ship=\u0026psid=pikahd.com,pikahd.com\u0026sub3=invoke_layer\u0026res=14.229\u0026dev=r\u0026uuid=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1","fqdn":"reminderasking.com","domain":"reminderasking.com","tld":"com"},"ip":{"addr":"192.243.61.225","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"title":"Attention"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-13T10:11:46Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-10-02 18:12:28","alert_count":0,"request_count":6,"received_data":5322,"sent_data":1962,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.highcpmgate.com","ip":{"addr":"172.240.253.132","port":0,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2024-04-19","domain_rank":0,"first_seen":"2024-04-23 21:13:36","last_seen":"2024-09-26 18:31:33","alert_count":0,"request_count":2,"received_data":4054,"sent_data":2360,"comment":"","tags":null,"fingerprints":null},{"fqdn":"press-continue.2a6rwlv7ew4w.top","ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"domain_registered":"2024-07-27","domain_rank":0,"first_seen":"2024-09-25 14:00:47","last_seen":"2024-09-26 18:44:56","alert_count":0,"request_count":10,"received_data":979281,"sent_data":5611,"comment":"","tags":null,"fingerprints":null},{"fqdn":"loadingscripts.com","ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"domain_registered":"2023-04-27","domain_rank":0,"first_seen":"2023-04-29 06:33:24","last_seen":"2024-09-26 16:06:31","alert_count":0,"request_count":5,"received_data":113099,"sent_data":2432,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 07:43:57","last_seen":"2024-10-02 18:12:27","alert_count":0,"request_count":4,"received_data":3550,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"reminderasking.com","ip":{"addr":"192.243.61.227","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2024-08-12","domain_rank":0,"first_seen":"2024-08-12 13:58:37","last_seen":"2024-10-02 16:33:07","alert_count":3,"request_count":3,"received_data":5435,"sent_data":5145,"comment":"","tags":null,"fingerprints":null},{"fqdn":"riflesurfing.xyz","ip":{"addr":"192.64.81.118","port":0,"asn":19318,"as":"IS-AS-1","country":"United States","country_code":"US"},"domain_registered":"2024-02-09","domain_rank":0,"first_seen":"2024-02-09 19:20:06","last_seen":"2024-09-26 01:20:25","alert_count":0,"request_count":1,"received_data":529,"sent_data":751,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-10-02 18:13:51","alert_count":0,"request_count":2,"received_data":1398,"sent_data":650,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2024-10-02 18:20:41","alert_count":0,"request_count":1,"received_data":2976,"sent_data":467,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"7b556b5c53e6044f936419f783c82ae8","sha1":"cf28d9e5c2e04442d6aba982caa3ebb601a99ac3","sha256":"7ce041c3470f00f3cfa8146f92a512b45fd1cd480b8cc397e91e30b457ca2bd3","sha512":"9cf599d1d238f32063ffb5cbaa667dcaf56e043520ca922c92b166e38a835a47712c91d2ffc442d6d115e1cb3fffa9a8f4ba648e3e646208d599f9430ea0755a","ssdeep":"","tlshash":"4db012b1456061027e420024445f1c48305383030cc8eca4b44e89408f0e05420e26cf","size":112,"data":"","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.252646Z","times_seen":506,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"798eedd8ae39afa34b8e105e4a104bc7","sha1":"610297e468632eb07629da7d1271ad63cae51661","sha256":"8aec80ebfc35d71f78311f3f0eccd03d3ab141bb4e7890cba6fe71631c9bacb0","sha512":"d28cf925a6032c8a04c140cf25ad9c93390397c3107ce4f8492f085fd3874682cb658f0b556ebf940e665265c8a4ed98ba9fece36aa81b3f3730f1c57ae78431","ssdeep":"","tlshash":"72d05bce7f660168079fc41924bc4f057434140b8b1a35897d3c56944f34dc96dd49dc","size":281,"data":"","first_seen":"2023-03-08T14:39:48Z","last_seen":"2026-02-09T05:56:48.774545Z","times_seen":268,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/pwa_custom.js","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"8dc402b92b1ed0b13627e2ba1b928cc7","sha1":"35d1e71cdea9a15b778c6137baaaac1eda4aabb3","sha256":"b1d3e86c81061bd76770790bf5e2f0ffa7b45f2c4e3fc3400a7142bf9b3a53fb","sha512":"82f513e7dd565a5def5070c3046ed733135e580099b1f4f6ccde65663f794af195152ecf4f6eed9fd7d65d51584f285823b75cef70468d0389394208cdba17d2","ssdeep":"","tlshash":"ac41b6292c1c72bd2282fba957249f17bc52b7084c374581b7ed4189e3e6cd9cd971b2","size":1801,"data":"","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.248495Z","times_seen":512,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/default_scripts/notification.js","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"01a2c61eb40ce8e341a0801f78da7735","sha1":"1cb39b0674bc20c3208c16c53c131e74704759ed","sha256":"03d593cbf7b72d3c70caedac0c0259330ce8b1a45b708e92e3f19245b6ca9929","sha512":"4cf034e78b5f5fa4e85b69c0d2f6b27983076f79ff9415df26613351944eef9cfb19e7a6600b8a61c878d0877df26891da9996819578518ffeb477807b155351","ssdeep":"","tlshash":"a751a8d13bd06ec653a24adb6d1bfcc0cd17026af9b90d59cc1728281adc217e28daf0","size":2801,"data":"","first_seen":"2023-03-29T21:47:11Z","last_seen":"2025-12-15T05:03:23.824298Z","times_seen":977,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"c04082450026da68c701a71154753008","sha1":"c24fd70ad744a7667c0bd03afa99ac2962542524","sha256":"e6dbeaee41683943b1c88da7ddb778c9994c56dc4c0620106c21265809e1a4ad","sha512":"5cb3311cee2a99e43e7bc77ff9c2d591823f7796dae1873d90972f11fe46cb4f6fb215330539509871800914bb615a4987e55aadfab113a2c880189b28ed3f2d","ssdeep":"","tlshash":"18318d29863b4435407b92be63fa97da7930405f7401ea5a792c0b961f80ca526b5899","size":1578,"data":"","first_seen":"2023-03-08T14:39:48Z","last_seen":"2026-02-09T05:56:48.77537Z","times_seen":268,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:36.250691013Z","timestamp":1728025956250,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9A67108D7B1A75F9E4962D77ECC98677CAB1105ADB347C1D4C17239027B12AF5\"\r\nLast-Modified: Thu, 03 Oct 2024 04:17:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3831\r\nExpires: Fri, 04 Oct 2024 08:16:27 GMT\r\nDate: Fri, 04 Oct 2024 07:12:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"291c0bfaa25266d48c16fa38a4a62b7b","sha1":"483633beedec01aafe0b11575cc814705cf2c6f5","sha256":"9a67108d7b1a75f9e4962d77ecc98677cab1105adb347c1d4c17239027b12af5","sha512":"dbf5472a3e19ff527f091a27edea0b47f6a0323644a1d2596c2e2bb839d407fca245b1eb2e31e2e1401886d1c6d1a28fdd08603a59eaca30e0edb589cd753a36","ssdeep":"","tlshash":"eff0051606f73508897520053739e231e9716caa74218b9054f405916940b7226c604c","first_seen":"2024-10-03T08:08:47Z","last_seen":"2024-10-06T09:48:50.259848Z","times_seen":16204,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:36.266978945Z","timestamp":1728025956266,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1F8E0ABFDC44A19B72E21635726F9C6BF7DBDDBAA9B32E69E7A7A33C4481B3A7\"\r\nLast-Modified: Thu, 03 Oct 2024 17:05:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3745\r\nExpires: Fri, 04 Oct 2024 08:15:01 GMT\r\nDate: Fri, 04 Oct 2024 07:12:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"177d454dd0208d2334d0ea2bf8757116","sha1":"879b2d1887fdcfff16a86a06329f5ac388e7c894","sha256":"1f8e0abfdc44a19b72e21635726f9c6bf7dbddbaa9b32e69e7a7a33c4481b3a7","sha512":"ff3769871d4f5903b16b21c04ec134be8df83815778887ab1317b6f9030f33fd39b14009f0f158bf80ad7e6ab81b017080ad7dab0ab9994f44bcf338675b7895","ssdeep":"","tlshash":"5cf0c4a103d13a8033f120323078f71bbf038adf790042a430e08fa77c012e80bad208","first_seen":"2024-10-04T00:19:31Z","last_seen":"2024-10-06T09:53:22.024601Z","times_seen":11957,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:36.349480603Z","timestamp":1728025956349,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"27E611631228F6341ECE9C9DE774F153CB8DB20062E6E71B4910316DDFA68E8D\"\r\nLast-Modified: Thu, 03 Oct 2024 20:09:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3772\r\nExpires: Fri, 04 Oct 2024 08:15:28 GMT\r\nDate: Fri, 04 Oct 2024 07:12:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"70a94c83902f4fe10d6a333fa61dd9f6","sha1":"d88a5f015cb1a8aa43cf9d9c8dff36da164e123a","sha256":"27e611631228f6341ece9c9de774f153cb8db20062e6e71b4910316ddfa68e8d","sha512":"6810142f6cfd64817760a7637a9ce3d1f6226f1e49eb91d0801727f653ff18c7572060e8b70bc9b299177a9cd395f91385084fabfff6dee71caf7df00828152f","ssdeep":"","tlshash":"e4f00e890bf73c4d7f300805666cf60a59409e6d39902ee8a9cc03c0794a7dd4b88a3c","first_seen":"2024-10-03T22:52:50Z","last_seen":"2024-10-06T09:53:23.149419Z","times_seen":7863,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:36.54435878Z","timestamp":1728025956544,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"27AA562F9D2704B5305C2EC26BB6B501E743DBDBB6EF3B27F223B755BFF5F7B3\"\r\nLast-Modified: Thu, 03 Oct 2024 12:05:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3918\r\nExpires: Fri, 04 Oct 2024 08:17:54 GMT\r\nDate: Fri, 04 Oct 2024 07:12:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c2bf1243295953fa31f9b48514d449a0","sha1":"20c3a59859c63d531a77891c8281c01405d4ca7f","sha256":"27aa562f9d2704b5305c2ec26bb6b501e743dbdbb6ef3b27f223b755bff5f7b3","sha512":"6133dbbddd7b178ccc3334ecf2a91fd0a4f0c2e9bdd671f0cf70f34d9ba44113860c197fb1bc3c692e0e4b508590f40c28850a11db8c4409a05d08837c260f40","ssdeep":"","tlshash":"1ff0055b015bb506736605107554e5f5fe30f7da35a115e7a46803f5e912fec5350448","first_seen":"2024-10-03T22:58:24Z","last_seen":"2024-10-04T10:18:10.603536Z","times_seen":5195,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:36.895662082Z","timestamp":1728025956895,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"37A67032DEDC39F013099D10D48012AB85D4B005A6F3BBB1F3EC101F0B8FE263\"\r\nLast-Modified: Thu, 03 Oct 2024 04:09:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=19118\r\nExpires: Fri, 04 Oct 2024 12:31:14 GMT\r\nDate: Fri, 04 Oct 2024 07:12:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"f3183cf2209bb37b83c837ec15d21088","sha1":"64bb0d634d5c5ffa80f0c9cda892c065013c0267","sha256":"37a67032dedc39f013099d10d48012ab85d4b005a6f3bbb1f3ec101f0b8fe263","sha512":"a7ac6ff1cc1c7a8ab13d4561b34ecc1524aac3cc3dc6c9d202816210cd1e0b89a3c4e03c028b12ce4146afb4103879c32d65dee5153e6848c0042e0eb6af01e8","ssdeep":"","tlshash":"44f005ca181475099731842578f0d8790d14d8b129b302d647ecdbf37c15bd9590851c","first_seen":"2024-10-03T14:33:01Z","last_seen":"2024-10-06T09:46:38.34622Z","times_seen":62,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"reminderasking.com/qu8nugnpy?rixohm=53\u0026refer=https://pikahd.com/\u0026kw=[%22pikahd%22,%22-%22,%22anime%22,%22movies%22,%22series%22,%22hindi%22,%22dubbed%22,%22+%22,%22english%22,%22dubbed%22,%22subbed%22,%22in%22,%22japanese%22,%22-%22,%22japanese%22,%22watch%22,%22or%22,%22download%22,%22all%22,%22for%22,%22free%22,%22with%22,%22english%22,%22subtitles%22]\u0026key=690fc7e48c3c552d2ab73d1fab3999f6\u0026scrWidth=424\u0026scrHeight=942\u0026tz=5.5\u0026v=24.8.8162\u0026ship=\u0026psid=pikahd.com,pikahd.com\u0026sub3=invoke_layer\u0026res=14.229\u0026dev=r\u0026uuid=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1","fqdn":"reminderasking.com","domain":"reminderasking.com","tld":"com"},"ip":{"addr":"192.243.61.227","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:37.170379682Z","timestamp":1728025957170,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /qu8nugnpy?rixohm=53\u0026refer=https://pikahd.com/\u0026kw=[%22pikahd%22,%22-%22,%22anime%22,%22movies%22,%22series%22,%22hindi%22,%22dubbed%22,%22+%22,%22english%22,%22dubbed%22,%22subbed%22,%22in%22,%22japanese%22,%22-%22,%22japanese%22,%22watch%22,%22or%22,%22download%22,%22all%22,%22for%22,%22free%22,%22with%22,%22english%22,%22subtitles%22]\u0026key=690fc7e48c3c552d2ab73d1fab3999f6\u0026scrWidth=424\u0026scrHeight=942\u0026tz=5.5\u0026v=24.8.8162\u0026ship=\u0026psid=pikahd.com,pikahd.com\u0026sub3=invoke_layer\u0026res=14.229\u0026dev=r\u0026uuid=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1 HTTP/1.1\r\nHost: reminderasking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:37 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nSet-Cookie: u_pl=23079524; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\nuid_id2=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1; expires=Fri, 11 Oct 2024 07:12:37 GMT; path=/\nain=eyJhbGciOiJIUzI1NiJ9.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.o7Q7ElmoRVKB2t0GU2fqRCJt5Wrq5LbwTt79RA2--vY; expires=Fri, 04 Oct 2024 07:13:37 GMT; path=/\r\nHost: reminderasking.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 2f029e690fa1a176823e13fdd7388eac\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1647,"size_decoded":3571,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1052)","md5":"65aab1e0bf96d3cb85fac50524a3ba42","sha1":"e473ff40413025e71668fe67abc32625aeb7972e","sha256":"3ca3a8fd3f84ea59034fcb2ecd17b9aa18c2549769a63b796a36fb21e9f4ddbc","sha512":"7ead46250956200209263138c31dd6618b17a3687f85dcd01ef13b53f1714b770819cb3de48e1f6d47413dbb40190ceb4aade45a407c57877b2aba1820acb348","ssdeep":"","tlshash":"c571a586b8ef54a1d523303ccebbd6d83636c02b17069918394c40b62f59d1683b6bee","first_seen":"2024-10-04T10:11:49.974829Z","last_seen":"2024-10-04T10:11:49.974829Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"reminderasking.com/api/users?token=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\u0026in=false\u0026ship=\u0026uuid=a3493622-aa55-47d1-862c-fd1c38a14e64%3A1%3A1\u0026pii=","fqdn":"reminderasking.com","domain":"reminderasking.com","tld":"com"},"ip":{"addr":"192.243.61.227","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:37.724681453Z","timestamp":1728025957724,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /api/users?token=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\u0026in=false\u0026ship=\u0026uuid=a3493622-aa55-47d1-862c-fd1c38a14e64%3A1%3A1\u0026pii= HTTP/1.1\r\nHost: reminderasking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://reminderasking.com/api/users?token=L3F1OG51Z25weT9rZXk9MGYyMmMxZmQ2MDlmMTNjYjc5NDdjOGNhYmZlMWE5MGQmc3VibWV0cmljPTIzMDc5NTI0\r\nCookie: u_pl=23079524; uid_id2=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1; ain=eyJhbGciOiJIUzI1NiJ9.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.o7Q7ElmoRVKB2t0GU2fqRCJt5Wrq5LbwTt79RA2--vY; cjs=t\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:37 GMT\r\nContent-Type: text/html\r\nContent-Length: 0\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nLocation: http://riflesurfing.xyz/c9b2l0k.php?key=cgm58mchin7m1crzxgl8\u0026SUB_ID_SHORT=432791b4a65d4e299ee3a63a49a39c15\u0026COST_CPC=\u0026PLACEMENT_ID=23079524\u0026CAMPAIGN_ID=1127882\u0026DEVICE_BRAND=Unknown\u0026BROWSER_NAME=Firefox\u0026USER_OS=Linux\u0026USER_CARRIER=Blix%20Solutions\u0026USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0\u0026REMOTE_LANGUAGE=11\u0026BANNER_ID=3124965\r\nSet-Cookie: uid_id2=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1; expires=Fri, 11 Oct 2024 07:12:37 GMT; path=/\niprc47429db95c644964b69994ec5a571b9f=5569799; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\npdhtkv=true; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\nuncs=1; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\npdhtkv28=true; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\nuncs28=1; expires=Sat, 05 Oct 2024 07:12:37 GMT; path=/\r\nHost: reminderasking.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 0201a9b9c531c3ae02c2eb9ce8f277db\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T16:30:47.886967Z","times_seen":14589457,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"reminderasking.com/favicon.ico","fqdn":"reminderasking.com","domain":"reminderasking.com","tld":"com"},"ip":{"addr":"172.240.108.68","port":0,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:38.129683354Z","timestamp":1728025958129,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: reminderasking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://reminderasking.com/api/users?token=L3F1OG51Z25weT9rZXk9MGYyMmMxZmQ2MDlmMTNjYjc5NDdjOGNhYmZlMWE5MGQmc3VibWV0cmljPTIzMDc5NTI0\r\nCookie: u_pl=23079524; uid_id2=a3493622-aa55-47d1-862c-fd1c38a14e64:1:1; ain=eyJhbGciOiJIUzI1NiJ9.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.o7Q7ElmoRVKB2t0GU2fqRCJt5Wrq5LbwTt79RA2--vY; cjs=t\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:38 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: b380d78c51ea32399e6e841b33c5d8ed\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T16:30:47.886967Z","times_seen":14589457,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-10-04","alert":"Sinkholed","trigger":"reminderasking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:38.250603156Z","timestamp":1728025958250,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B0AA4AD594CC7F7ED95F71DFD8D0861CB5AF6A2F3171C55785E6918EB9BD477A\"\r\nLast-Modified: Fri, 04 Oct 2024 01:31:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2217\r\nExpires: Fri, 04 Oct 2024 07:49:35 GMT\r\nDate: Fri, 04 Oct 2024 07:12:38 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"6c410e0fe14f406ed7ecac7422abd9f2","sha1":"90e2a9be8b66acf40080a38ce4f914ac3c971805","sha256":"b0aa4ad594cc7f7ed95f71dfd8d0861cb5af6a2f3171c55785e6918eb9bd477a","sha512":"5814fdc0e59d456ddb3f5a863bf6023fa75ae2ded2036767627309c2ae5f45340bd208198adf986b71cb06765cd50ec6e343fb7026e6526534507ef6348b32b0","ssdeep":"","tlshash":"9bf00e5c1a747e10ab3b2929e408d237ddf02aa9388426dd93e50bf17925bfe484855c","first_seen":"2024-10-04T03:51:02Z","last_seen":"2024-10-04T10:15:26.522124Z","times_seen":3845,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:38.254486656Z","timestamp":1728025958254,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B0AA4AD594CC7F7ED95F71DFD8D0861CB5AF6A2F3171C55785E6918EB9BD477A\"\r\nLast-Modified: Fri, 04 Oct 2024 01:31:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2217\r\nExpires: Fri, 04 Oct 2024 07:49:35 GMT\r\nDate: Fri, 04 Oct 2024 07:12:38 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"6c410e0fe14f406ed7ecac7422abd9f2","sha1":"90e2a9be8b66acf40080a38ce4f914ac3c971805","sha256":"b0aa4ad594cc7f7ed95f71dfd8d0861cb5af6a2f3171c55785e6918eb9bd477a","sha512":"5814fdc0e59d456ddb3f5a863bf6023fa75ae2ded2036767627309c2ae5f45340bd208198adf986b71cb06765cd50ec6e343fb7026e6526534507ef6348b32b0","ssdeep":"","tlshash":"9bf00e5c1a747e10ab3b2929e408d237ddf02aa9388426dd93e50bf17925bfe484855c","first_seen":"2024-10-04T03:51:02Z","last_seen":"2024-10-04T10:15:26.522124Z","times_seen":3845,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"riflesurfing.xyz/c9b2l0k.php?key=cgm58mchin7m1crzxgl8\u0026SUB_ID_SHORT=432791b4a65d4e299ee3a63a49a39c15\u0026COST_CPC=\u0026PLACEMENT_ID=23079524\u0026CAMPAIGN_ID=1127882\u0026DEVICE_BRAND=Unknown\u0026BROWSER_NAME=Firefox\u0026USER_OS=Linux\u0026USER_CARRIER=Blix%20Solutions\u0026USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0\u0026REMOTE_LANGUAGE=11\u0026BANNER_ID=3124965","fqdn":"riflesurfing.xyz","domain":"riflesurfing.xyz","tld":"xyz"},"ip":{"addr":"192.64.81.118","port":0,"asn":19318,"as":"IS-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:38.576741323Z","timestamp":1728025958576,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /c9b2l0k.php?key=cgm58mchin7m1crzxgl8\u0026SUB_ID_SHORT=432791b4a65d4e299ee3a63a49a39c15\u0026COST_CPC=\u0026PLACEMENT_ID=23079524\u0026CAMPAIGN_ID=1127882\u0026DEVICE_BRAND=Unknown\u0026BROWSER_NAME=Firefox\u0026USER_OS=Linux\u0026USER_CARRIER=Blix%20Solutions\u0026USERAGENT=Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0\u0026REMOTE_LANGUAGE=11\u0026BANNER_ID=3124965 HTTP/1.1\r\nHost: riflesurfing.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.22.0\r\nDate: Fri, 04 Oct 2024 07:12:38 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nSet-Cookie: uclick=xshqhqrnfv; expires=Sat, 05-Oct-2024 07:12:38 GMT; Max-Age=86400; path=/\nuclickhash=xshqhqrnfv-xshqhqrnfv-2t9lbl-g646-fnj20-zw15vr-zw15i4-222f68; expires=Sat, 05-Oct-2024 07:12:38 GMT; Max-Age=86400; path=/\r\nLocation: https://www.highcpmgate.com/chutansjm?key=af0294e9c0735ff66277d9a6de67aad8\r\nStrict-Transport-Security: max-age=31536000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T16:30:47.886967Z","times_seen":14589457,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:38.956942851Z","timestamp":1728025958956,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"95EF75CFD17C86765DB48E6B9A56F938714758959BE4602A5A5CA6F105C9DEE0\"\r\nLast-Modified: Thu, 03 Oct 2024 04:38:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3745\r\nExpires: Fri, 04 Oct 2024 08:15:03 GMT\r\nDate: Fri, 04 Oct 2024 07:12:38 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"a15140bcba177bc2f09e1f92f665260b","sha1":"2c7721ca7b0d88712c9f7a685ba2d434052cb40d","sha256":"95ef75cfd17c86765db48e6b9a56f938714758959be4602a5a5ca6f105c9dee0","sha512":"647e1bb01e6891b86b8473b1cdb939537237912e17847250da737667d6e326303d25fa4e66b74e82bcedde4a4fc359de68f35527d40da921c95e30b21c0e6b61","ssdeep":"","tlshash":"9af00ec575b2fc4997b9a002a976d10e2d52ada62c0043a522d047ca2461be036c8889","first_seen":"2024-10-04T06:44:17Z","last_seen":"2024-10-06T09:46:27.392449Z","times_seen":3,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.highcpmgate.com/chutansjm?key=af0294e9c0735ff66277d9a6de67aad8","fqdn":"www.highcpmgate.com","domain":"highcpmgate.com","tld":"com"},"ip":{"addr":"172.240.253.132","port":0,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:39.224321124Z","timestamp":1728025959224,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /chutansjm?key=af0294e9c0735ff66277d9a6de67aad8 HTTP/1.1\r\nHost: www.highcpmgate.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:39 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nSet-Cookie: u_pl=22932349; expires=Sat, 05 Oct 2024 07:12:39 GMT; path=/\nain=eyJhbGciOiJIUzI1NiJ9.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.F7yi6G-W5A6IB5NEFtXZ-6DEvFfP9773fHP_ABdAetw; expires=Fri, 04 Oct 2024 07:13:39 GMT; path=/\r\nHost: www.highcpmgate.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 6ff3d936d3273b317203b2a1e8e8e73e\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1270,"size_decoded":2791,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (388)","md5":"bf84fbad4fbde40a6a9f0b88a3d911fd","sha1":"c943c136a99388315b717b4bb056d19b35d39a6b","sha256":"6d4813645a42d27cce6445f29d108bd0ba43848e1febd17571c83a98fe67235f","sha512":"26f4f345496129ed2b1ec95f08a139e8bb37880812dbdb584c44ab738bc44f7ebc9c3a2910e830deb8c177c6e0a568869cb5909b8c80ae564d8386103d91a2ce","ssdeep":"","tlshash":"ec516246a8f790f08623603c9fafcba43937d2172206ec58355c41b15f58d0a87ba7dd","first_seen":"2024-10-04T10:11:49.977431Z","last_seen":"2024-10-04T10:11:49.977431Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.highcpmgate.com/api/users?uuid=\u0026pii=\u0026in=false\u0026token=L2NodXRhbnNqbT9rZXk9YWYwMjk0ZTljMDczNWZmNjYyNzdkOWE2ZGU2N2FhZDgmcHN0PTE3MjgwMjYwMTkmcm10Yz10JnNodT1lYjhmNDRhZGVjOTQwMWNmNDAwMWM3MTE1ZTE5OGUzYjE4YTg4MzNkNGNmNTBlNWJkMjZiOTU5YzBiODZjNGJmMjViMDdlNjQ1MzBkZjRkNzExMGFiNzU4NWMyOThiM2RlY2RiNWU0NWFmODJmYjEzNDZlMzRkNzNiNjZkZGQwMGExNmM4YTYyMmM2ZTU0YzczNjViMDRlZGE1ZmQzYmU1ZjViY2E2MjU0OTAyMTQ2Y2UyNTE","fqdn":"www.highcpmgate.com","domain":"highcpmgate.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-04T07:12:39.464Z","timestamp":1728025959464,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"highcpmgate.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 04:20:13 GMT","end":"Tue, 19 Nov 2024 04:20:12 GMT"},"fingerprint":{"sha1":"67:4C:F3:04:0C:C5:69:B0:00:B7:6D:DF:F5:A1:EB:41:AA:79:74:AB","sha256":"E3:0A:5B:D4:6D:0F:96:A7:C6:04:6E:6B:27:34:96:94:A9:11:ED:65:ED:6E:D7:EF:17:E9:5B:65:AD:61:DA:A6"}}},"request":{"raw":"GET /api/users?uuid=\u0026pii=\u0026in=false\u0026token=L2NodXRhbnNqbT9rZXk9YWYwMjk0ZTljMDczNWZmNjYyNzdkOWE2ZGU2N2FhZDgmcHN0PTE3MjgwMjYwMTkmcm10Yz10JnNodT1lYjhmNDRhZGVjOTQwMWNmNDAwMWM3MTE1ZTE5OGUzYjE4YTg4MzNkNGNmNTBlNWJkMjZiOTU5YzBiODZjNGJmMjViMDdlNjQ1MzBkZjRkNzExMGFiNzU4NWMyOThiM2RlY2RiNWU0NWFmODJmYjEzNDZlMzRkNzNiNjZkZGQwMGExNmM4YTYyMmM2ZTU0YzczNjViMDRlZGE1ZmQzYmU1ZjViY2E2MjU0OTAyMTQ2Y2UyNTE HTTP/1.1\r\nHost: www.highcpmgate.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.highcpmgate.com/api/users?token=L2NodXRhbnNqbT9rZXk9MGYyMmMxZmQ2MDlmMTNjYjc5NDdjOGNhYmZlMWE5MGQmc3VibWV0cmljPTIyOTMyMzQ5\r\nCookie: u_pl=22932349; ain=eyJhbGciOiJIUzI1NiJ9.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.F7yi6G-W5A6IB5NEFtXZ-6DEvFfP9773fHP_ABdAetw; cjs=t\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nServer: nginx/1.19.5\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: text/html\r\nContent-Length: 0\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nLocation: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1\r\nSet-Cookie: pdhtkv=true; expires=Sat, 05 Oct 2024 07:12:40 GMT; path=/\nuncs=1; expires=Sat, 05 Oct 2024 07:12:40 GMT; path=/\npdhtkv28=true; expires=Sat, 05 Oct 2024 07:12:40 GMT; path=/\nuncs28=1; expires=Sat, 05 Oct 2024 07:12:40 GMT; path=/\r\nHost: www.highcpmgate.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 24fd66d5ef72b0d8e2254132ea4d201d\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T16:30:47.886967Z","times_seen":14589457,"resource_available":true,"data":null}},"time_used":917,"timings":{"blocked":325,"dns":1,"connect":103,"send":0,"wait":266,"receive":1,"ssl":217},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:40.253904353Z","timestamp":1728025960253,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B954364287FB1BB8A2C9F1BA86CBE0D36D93962B8141CC6A5E841686F84AD3F4\"\r\nLast-Modified: Thu, 03 Oct 2024 04:25:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=20901\r\nExpires: Fri, 04 Oct 2024 13:01:01 GMT\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d28f84151779c6740411b3f413ad75b8","sha1":"ce5db2dae5db12a787fe3c0c8b29156d8072ac9c","sha256":"b954364287fb1bb8a2c9f1ba86cbe0d36d93962b8141cc6a5e841686f84ad3f4","sha512":"266ff11ce8a85c8c233c003636e321c1ec04409d262b93ce76e9d71b0fae1502fd5c8809b4a23d8ced0e2b4ed521f1acc872796a2d751f8656be3cbf035944de","ssdeep":"","tlshash":"42f00e8669a87c490b76803aeac8c836583068bb3d5856d34bec13f368933fd5a4402c","first_seen":"2024-10-04T10:11:49.979165Z","last_seen":"2024-10-04T10:11:49.979165Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-04T07:12:40.067Z","timestamp":1728025960067,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1 HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.highcpmgate.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: text/html\r\nContent-Length: 169\r\nLocation: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":169,"size_decoded":169,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"ff3438f1699724c1ce3d071d2ca210c2","sha1":"8784ddfff3a51e608dd34fce5942bc8c91af8b11","sha256":"98d367d32108a25ed28048a4f17b2504e610249dd0bf2dcf368c7f922b300997","sha512":"9f8c524bcccbc3fc29f14ac9e54a9fab39585dcb977f6258585ecf805ac27968f26e9188f4280df9e101d273169ba70812e98fc2244e989af3b10bf00015618b","ssdeep":"","tlshash":"26c08cadaf027cd8b8a73b3860c360a0e2ec807012d9451281b0464bf1cf1979ec33d1","first_seen":"2023-04-07T00:29:34Z","last_seen":"2025-03-01T20:14:22.085328Z","times_seen":3157,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":240,"dns":39,"connect":61,"send":0,"wait":61,"receive":0,"ssl":137},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-04T07:12:40.375Z","timestamp":1728025960375,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/ HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.highcpmgate.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: text/html\r\nLast-Modified: Mon, 15 Jul 2024 09:36:20 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: W/\"6694ed94-5b25\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5763,"size_decoded":23333,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1849)","md5":"03277e8bff4782de05f2267fc761775d","sha1":"7ed2779735fe3f6f1e54677634827027c9e724cb","sha256":"6e0ba1505692b64b38399a6f247f7b50c44c5f8ed925741ea1e196c49874a00b","sha512":"a175341c4bb1031118d1917a0131821659f842b3f81a2cf4aa9b6b1c762e5fe64e3123426c2f6cc1360258a088e3f83ffcba68a7106c76b35a86323a35eaef64","ssdeep":"384:e9FBFpEvFSetTV27FNFPvERUS49Bw7a6uEspJCi1aiwCiM/jyJ1m:e9FBFpuFSecFNF2m9BwYJr1Dwr3y","tlshash":"01a2755b46b312145c4798781be60b5632b0c017d50aeed83eee6788cf8eec49da27dd","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.24269Z","times_seen":265,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/animate.css","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.615Z","timestamp":1728025960615,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/animate.css HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: text/css\r\nLast-Modified: Mon, 15 Jul 2024 09:36:23 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: W/\"6694ed97-1361f\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4894,"size_decoded":79391,"mime_type":"text/css","magic":"ASCII text","md5":"97d64faca1f1a0422ecf3ae998026899","sha1":"61bc4cbfc9fc6e0db503aa67ba92c7c768a4c7e1","sha256":"d1413e8c95a61b36e4ea9441e9ead3cce29089e85043b0706453597016c01fdb","sha512":"c3404fc50af9052e5e548321bd10ea9e09b8e23b3950e61335bcd8cac045254de36f794ff93f807d6e368fad42cd1500948b3d6c32e0b73d339a46d95429c7f7","ssdeep":"384:rFu8uVWgnu5uLlFlH/O/Qu7u/sjzbg/jxXlIPfL4QKgZQMkL0Vvaj7Z:rFu8uEgnu5uBu7u2KgZQMkL0Vvaj7Z","tlshash":"78731fad2991148456638a1d83df8e68673ce573181a9cef73c2488bcf8bf9c67c9147","first_seen":"2023-04-05T03:57:19Z","last_seen":"2026-02-09T05:56:48.773654Z","times_seen":2022,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:40.75503187Z","timestamp":1728025960755,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"6E1FB3ECAF1E5E9DAE4BE795168696882C8DFB250669ED7F2605FD20CCDCA8CA\"\r\nLast-Modified: Thu, 03 Oct 2024 04:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2121\r\nExpires: Fri, 04 Oct 2024 07:48:01 GMT\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"27861f0831553840cb70f7e2d0a8fcda","sha1":"8d3fe1f3b9bdf15959e05396416cd98250830a48","sha256":"6e1fb3ecaf1e5e9dae4be795168696882c8dfb250669ed7f2605fd20ccdca8ca","sha512":"7acbcbf633a2bf26b66b1ac99d0e3f4f3730731ee0d9b0f89c32858fec500b5c166976fe0bd7c557d72c90cfed3a6bb3ce6122a53c7647587bc045eb65de2a6d","ssdeep":"","tlshash":"faf0c0c201e67f52aba2580167b8a426ce246e7b68648bc9b5f042d22451bfd5744c9c","first_seen":"2024-10-04T10:11:49.985452Z","last_seen":"2024-10-04T10:11:49.985452Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/default_scripts/notification.js","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.625Z","timestamp":1728025960625,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"loadingscripts.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 05:44:18 GMT","end":"Tue, 19 Nov 2024 05:44:17 GMT"},"fingerprint":{"sha1":"BB:33:30:CB:FF:8D:E5:D7:F0:FA:90:BB:39:8C:4B:25:7C:B8:57:1A","sha256":"10:8F:97:B7:12:5B:24:80:5F:02:21:19:37:2A:98:85:4F:C5:96:E7:5B:52:56:2A:71:F6:C3:35:D9:65:25:A4"}}},"request":{"raw":"GET /progress_p/pwa_links/default_scripts/notification.js HTTP/1.1\r\nHost: loadingscripts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2801\r\nLast-Modified: Fri, 24 Mar 2023 17:31:52 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"641dde88-af1\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2801,"size_decoded":2801,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2801), with no line terminators","md5":"01a2c61eb40ce8e341a0801f78da7735","sha1":"1cb39b0674bc20c3208c16c53c131e74704759ed","sha256":"03d593cbf7b72d3c70caedac0c0259330ce8b1a45b708e92e3f19245b6ca9929","sha512":"4cf034e78b5f5fa4e85b69c0d2f6b27983076f79ff9415df26613351944eef9cfb19e7a6600b8a61c878d0877df26891da9996819578518ffeb477807b155351","ssdeep":"","tlshash":"a751a8d13bd06ec653a24adb6d1bfcc0cd17026af9b90d59cc1728281adc217e28daf0","first_seen":"2023-03-29T21:47:11Z","last_seen":"2025-12-15T05:03:23.824298Z","times_seen":977,"resource_available":true,"data":null}},"time_used":349,"timings":{"blocked":152,"dns":65,"connect":31,"send":0,"wait":31,"receive":1,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/style.css","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.618Z","timestamp":1728025960618,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"loadingscripts.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 05:44:18 GMT","end":"Tue, 19 Nov 2024 05:44:17 GMT"},"fingerprint":{"sha1":"BB:33:30:CB:FF:8D:E5:D7:F0:FA:90:BB:39:8C:4B:25:7C:B8:57:1A","sha256":"10:8F:97:B7:12:5B:24:80:5F:02:21:19:37:2A:98:85:4F:C5:96:E7:5B:52:56:2A:71:F6:C3:35:D9:65:25:A4"}}},"request":{"raw":"GET /progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/style.css HTTP/1.1\r\nHost: loadingscripts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 25 May 2023 12:41:31 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: W/\"646f577b-fe7\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1085,"size_decoded":4071,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"79d9dfa9f91948462f9069fd3e5f61ae","sha1":"6c8c5a83d3c8180a16dd7e6c3065c81ad38bcc94","sha256":"8c8549291722875346b6e050a092cdda6088d579aba282a66304299616c55871","sha512":"7de1c708cc7fdd0c115270f67240bc2eeff7d4408b06b762d3ec694c0ca2e3664b372e49297ca31addc70cf7838f7a826a5148eb61444e565c0d780d46899f3e","ssdeep":"","tlshash":"eb81e134b9040285b231e6642fa45b26ff9551938b038079ffc3624a8ff7269c6f5bd8","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.246179Z","times_seen":506,"resource_available":false,"data":null}},"time_used":450,"timings":{"blocked":197,"dns":71,"connect":43,"send":0,"wait":44,"receive":1,"ssl":92},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/pwa_custom.js","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.623Z","timestamp":1728025960623,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"loadingscripts.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 05:44:18 GMT","end":"Tue, 19 Nov 2024 05:44:17 GMT"},"fingerprint":{"sha1":"BB:33:30:CB:FF:8D:E5:D7:F0:FA:90:BB:39:8C:4B:25:7C:B8:57:1A","sha256":"10:8F:97:B7:12:5B:24:80:5F:02:21:19:37:2A:98:85:4F:C5:96:E7:5B:52:56:2A:71:F6:C3:35:D9:65:25:A4"}}},"request":{"raw":"GET /progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/pwa_custom.js HTTP/1.1\r\nHost: loadingscripts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1801\r\nLast-Modified: Thu, 25 May 2023 12:47:54 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"646f58fa-709\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1801,"size_decoded":1801,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"8dc402b92b1ed0b13627e2ba1b928cc7","sha1":"35d1e71cdea9a15b778c6137baaaac1eda4aabb3","sha256":"b1d3e86c81061bd76770790bf5e2f0ffa7b45f2c4e3fc3400a7142bf9b3a53fb","sha512":"82f513e7dd565a5def5070c3046ed733135e580099b1f4f6ccde65663f794af195152ecf4f6eed9fd7d65d51584f285823b75cef70468d0389394208cdba17d2","ssdeep":"","tlshash":"ac41b6292c1c72bd2282fba957249f17bc52b7084c374581b7ed4189e3e6cd9cd971b2","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.248495Z","times_seen":512,"resource_available":true,"data":null}},"time_used":445,"timings":{"blocked":194,"dns":66,"connect":46,"send":0,"wait":44,"receive":1,"ssl":91},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/new_free.svg","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.627Z","timestamp":1728025960627,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/new_free.svg HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1545\r\nLast-Modified: Mon, 15 Jul 2024 09:36:25 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed99-609\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1545,"size_decoded":1545,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"add28f2b5b2a568a5d5b49bd7b40ec03","sha1":"66ad7a5ce73b4f84f2f54e5e6150cd5cc923d25e","sha256":"89bcc9a26f3ed7fb196ca1d744395e6fb79f4561ced17605eb27105a9f67e56e","sha512":"14759bc3c3b2efebdeacad4a5f74b9ac2d51c45f9c4b163cf2318b9c5aa427d8f424d0b8511cce7626ca123d259adb2dd0fe0c6d7781d2c24e1e46d59af9f83b","ssdeep":"","tlshash":"5531c01a0749e0eea02843c9db7d02d172d4e4efc05865e076b32c22f69ece186dd6e5","first_seen":"2023-04-07T22:39:46Z","last_seen":"2026-02-09T05:56:48.760555Z","times_seen":2026,"resource_available":false,"data":null}},"time_used":517,"timings":{"blocked":233,"dns":1,"connect":44,"send":0,"wait":44,"receive":0,"ssl":90},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/loading.svg","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.628Z","timestamp":1728025960628,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/loading.svg HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 386\r\nLast-Modified: Mon, 15 Jul 2024 09:36:24 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed98-182\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":386,"size_decoded":386,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"484f8bcb59050331f28ec35ae84c3ef0","sha1":"e083f687af91382e8485515369daffde1899a12a","sha256":"d4d917c84ef07493d6dc83306cb754ddddc1cdb4fc879e09f5b54a0b6f11d451","sha512":"40b15f814ebe100e1d989ae23176eaea1155c99de9049ecbb04b911420e88dd1a1d5982bd606582405b3944907e24c5e9320c99dda3789880f803337124670dd","ssdeep":"","tlshash":"d8e061148404d919141942bde3ed3c90207df1d7424e15c9f6902877e8048ef6cbe35e","first_seen":"2023-04-07T22:39:46Z","last_seen":"2026-04-09T23:17:09.511544Z","times_seen":2237,"resource_available":false,"data":null}},"time_used":514,"timings":{"blocked":232,"dns":0,"connect":47,"send":0,"wait":44,"receive":0,"ssl":91},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/qr2.png","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.629Z","timestamp":1728025960629,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/qr2.png HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 7190\r\nLast-Modified: Mon, 15 Jul 2024 09:36:25 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed99-1c16\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7190,"size_decoded":7190,"mime_type":"image/png","magic":"PNG image data, 1160 x 1160, 8-bit/color RGB, non-interlaced","md5":"d697f8240f634a6bf3c59af9fada4fd4","sha1":"703d294b81b2ff5a5f47dc4279c837a6aa8cead5","sha256":"f18af212bbafbb0b86b7aff29d1d0b217e341e564041dabbed3563b8d692b2db","sha512":"732b05233ae535673f9971b8d8d8faef9bc531cef936227bd2b586984ffdee58f6ae1ff23e17a1c728fc23fbe1dbb52f4b85f5e5f9d0fd2d69bd7fe188e52874","ssdeep":"192:nFobrbbbbbbbbbbbbbbbbbEbbbbbbbbbbbbbbbbb0:FYP","tlshash":"19e1b85d18500a6c6edfaffac9c244d8bed4a247d9fc7753b31a0819e00107cad6adb5","first_seen":"2023-08-23T01:46:03Z","last_seen":"2025-07-06T15:45:00.24731Z","times_seen":259,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":230,"dns":0,"connect":0,"send":0,"wait":74,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/1.png","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.631Z","timestamp":1728025960631,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/1.png HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: image/png\r\nContent-Length: 49867\r\nLast-Modified: Mon, 15 Jul 2024 09:36:23 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed97-c2cb\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":49867,"size_decoded":49867,"mime_type":"image/png","magic":"PNG image data, 980 x 980, 8-bit/color RGBA, non-interlaced","md5":"1143a7b3bc5051147099facc8dc1432e","sha1":"3a01609fb60f785d3233a788dff4351a1d79d4c9","sha256":"ff708dfd7d816c51832a47cebfaf051422ddd0ab0d96588b55a1a2b89c1f3f73","sha512":"67f561ab9b80b4b58386dabb0bdb42b4a940bbf6c722745b6fc898c4c392dbfe13bdc20809c30b98aadc5f0c767d57fd9fdb81e7f8d1ed98a0ac3f2dce8f42db","ssdeep":"1536:i7gfO79fMkQ/7bsmvPmWtnYvFx26dsq/X8gfIUu:i39fMbfXmqY9xpdb/bfZu","tlshash":"3923d05c4b2ad057cc8e51b00ce096fb9f3e917ec7e864362b3aa7b606e40f2554e1c6","first_seen":"2023-04-07T22:39:46Z","last_seen":"2026-02-09T05:56:48.762777Z","times_seen":704,"resource_available":false,"data":null}},"time_used":609,"timings":{"blocked":229,"dns":1,"connect":44,"send":0,"wait":91,"receive":45,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:41.091760015Z","timestamp":1728025961091,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"b52b2a35d2317cc2fbabfc2a10d4b0ff","sha1":"8bd80582ff86252c57adec56072ea61aeafed8b9","sha256":"d655303d881049f8da2792e73cf938086ae42e766111c7ccb1346f8273e10eee","sha512":"edf90824cba4e7179ca7dc05f8b1e6735c8cdad8be6b375a9b1d4cb9374dd0ffe4bbe23b1014fdababe2691ad5171af814b7d46491766f4c05ce41217981e706","ssdeep":"","tlshash":"a4f023a03530f968aa5bcc0526d9ef5ea01132e5097c7749123ec3952088cf561089ad","first_seen":"2024-10-03T18:03:27Z","last_seen":"2024-10-06T09:53:20.851956Z","times_seen":742,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/close.svg","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.982Z","timestamp":1728025960982,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"loadingscripts.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 05:44:18 GMT","end":"Tue, 19 Nov 2024 05:44:17 GMT"},"fingerprint":{"sha1":"BB:33:30:CB:FF:8D:E5:D7:F0:FA:90:BB:39:8C:4B:25:7C:B8:57:1A","sha256":"10:8F:97:B7:12:5B:24:80:5F:02:21:19:37:2A:98:85:4F:C5:96:E7:5B:52:56:2A:71:F6:C3:35:D9:65:25:A4"}}},"request":{"raw":"GET /progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/close.svg HTTP/1.1\r\nHost: loadingscripts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1279\r\nLast-Modified: Wed, 24 May 2023 13:06:32 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"646e0bd8-4ff\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1279,"size_decoded":1279,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"369850b9873659adf0951d845f57dba1","sha1":"a64257186daa33b6b318943a457b6cf8d80b26b6","sha256":"9630c142a8c074cc1809ebf4109538cf29cc0baeb6c27726191f1cf5376e2e21","sha512":"6441b40e85c86e21362c7061a6b9610f52a5c801b274b246711546ad45c68c3e7f2f242f1621b90967eaeebf52709545d06283c2015d6b9ad7f6f7d37fb14a88","ssdeep":"","tlshash":"6821d8dc958f223ef324ff6189b316606ba423f6bb18c5bcb199a8157e1cb910c48e14","first_seen":"2023-04-07T22:39:47Z","last_seen":"2026-05-03T14:50:58.870458Z","times_seen":9164,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":144,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/alertmicrosoft1.mp3","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.988Z","timestamp":1728025960988,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/alertmicrosoft1.mp3 HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: audio\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 206 Partial Content\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nContent-Type: audio/mpeg\r\nContent-Length: 51165\r\nLast-Modified: Mon, 15 Jul 2024 09:36:23 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed97-c7dd\"\r\nContent-Range: bytes 0-51164/51165\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":null,"data":{"size":51165,"size_decoded":51165,"mime_type":"audio/mpeg","magic":"Audio file with ID3 version 2.4.0, contains:\n- MPEG ADTS, layer III, v2,  48 kbps, 24 kHz, Monaural","md5":"fab1bbb4cc471451600f345364157ac7","sha1":"9c14c555d07a32ce52fabcd4398e476ada6bbb1f","sha256":"68d390582507c5639dc5b624fd8e3b302678428fecb1ccedb75b23e90a8cdfbf","sha512":"77c50060d09f8cc8386942e04017c3bc50e733267fae5b8ee5a4ff47e0466149e112dac2ead9dcaf9033575793fa0d02ede17563b976b3935796eac078c9f80b","ssdeep":"1536:cFLP9apt7K1/ObOVoqzH1hXmdmf0XZjKG2dRKr:g4pc1mbC2OOZjMdRKr","tlshash":"ff33dfe7371278acfa51bcf9790b035af8660448b39999e99976f63040f3af53f08805","first_seen":"2023-04-05T08:28:42Z","last_seen":"2026-02-09T05:56:48.759445Z","times_seen":272,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":138,"dns":0,"connect":0,"send":0,"wait":45,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-10-04T07:12:41.244774281Z","timestamp":1728025961244,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"b52b2a35d2317cc2fbabfc2a10d4b0ff","sha1":"8bd80582ff86252c57adec56072ea61aeafed8b9","sha256":"d655303d881049f8da2792e73cf938086ae42e766111c7ccb1346f8273e10eee","sha512":"edf90824cba4e7179ca7dc05f8b1e6735c8cdad8be6b375a9b1d4cb9374dd0ffe4bbe23b1014fdababe2691ad5171af814b7d46491766f4c05ce41217981e706","ssdeep":"","tlshash":"a4f023a03530f968aa5bcc0526d9ef5ea01132e5097c7749123ec3952088cf561089ad","first_seen":"2024-10-03T18:03:27Z","last_seen":"2024-10-06T09:53:20.851956Z","times_seen":742,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"loadingscripts.com/progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/download-gif.gif","fqdn":"loadingscripts.com","domain":"loadingscripts.com","tld":"com"},"ip":{"addr":"185.246.188.124","port":443,"asn":200651,"as":"Flokinet Ltd","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.985Z","timestamp":1728025960985,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"loadingscripts.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 Aug 2024 05:44:18 GMT","end":"Tue, 19 Nov 2024 05:44:17 GMT"},"fingerprint":{"sha1":"BB:33:30:CB:FF:8D:E5:D7:F0:FA:90:BB:39:8C:4B:25:7C:B8:57:1A","sha256":"10:8F:97:B7:12:5B:24:80:5F:02:21:19:37:2A:98:85:4F:C5:96:E7:5B:52:56:2A:71:F6:C3:35:D9:65:25:A4"}}},"request":{"raw":"GET /progress_p/pwa_links/main/cinema/custom_cinema_fullpage/1/download-gif.gif HTTP/1.1\r\nHost: loadingscripts.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nContent-Type: image/gif\r\nContent-Length: 104467\r\nLast-Modified: Thu, 25 May 2023 10:24:54 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"646f3776-19813\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":104467,"size_decoded":104467,"mime_type":"image/gif","magic":"GIF image data, version 89a, 188 x 188","md5":"2d00d3926dd5bb55e7ab4100bacb86a7","sha1":"9d3c247c6e1fe672b8ba0849f30ed18c45176883","sha256":"0175bfd9afe9543559c705914fac010a6d609017f0a2edcffe599549561fb5d0","sha512":"b099b1fb41629e5c60c311a9d58312d390b1e6d0f9fd430566fdcc6f56730147d0f4f0583c0b5a6854073841eb37ba9d334b7d11758ef99ffea21df5c2ce95c5","ssdeep":"1536:yBTEL3bm9pvtCMdkAikWIkXhmBQQTiANPVdMVky2awFN9/idOEzRuH1:y6TbmvqA6XhDQG8MVH2MdOEzRuH1","tlshash":"13a3f0cbd48a1e23d90e697b428ad3b275796531b4f7653c2263b01d38514f2da2239f","first_seen":"2023-05-25T20:42:54Z","last_seen":"2025-07-06T15:45:00.247892Z","times_seen":512,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":141,"dns":0,"connect":0,"send":0,"wait":88,"receive":91,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/bg.gif","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.970Z","timestamp":1728025960970,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/bg.gif HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:40 GMT\r\nContent-Type: image/gif\r\nContent-Length: 854531\r\nLast-Modified: Mon, 15 Jul 2024 09:36:24 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed98-d0a03\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":854531,"size_decoded":854531,"mime_type":"image/gif","magic":"GIF image data, version 87a, 600 x 338","md5":"fb515d8640e8153526073e3dba53cef1","sha1":"065dcee1850b622ab7e96586cc5ae737dd335587","sha256":"306d7910500ae32624462375434beaab45581fdfb743af6f3efa5b096a403721","sha512":"b8f6083e2d88963ebc94971126f055e6d4a7ea28ab53c5c5c7191b4a994a98997ce29a0d14c406c49a93a28af130352d0867d0eed7eb8c67dafb12019f1ef42b","ssdeep":"12288:wv+ZhZIoNlXCgxxu7L/IRz6brXTERvSBFhmuXwARe0ETNER6C+BEY3GKsJR/Udif:njCaoL/IRQrXTEMFP5+By9RsEu8","tlshash":"e405230fc5b5548fc5b6743fdea01b84493f86be79d2db900c1a6adbec213ea1a51780","first_seen":"2023-04-07T22:39:46Z","last_seen":"2026-02-09T05:56:48.768177Z","times_seen":701,"resource_available":false,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":65,"receive":334,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/fav.png","fqdn":"press-continue.2a6rwlv7ew4w.top","domain":"2a6rwlv7ew4w.top","tld":"top"},"ip":{"addr":"194.63.143.96","port":443,"asn":50113,"as":"NTX Technologies s.r.o.","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:41.381Z","timestamp":1728025961381,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"2a6rwlv7ew4w.top","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Sep 2024 20:46:27 GMT","end":"Tue, 24 Dec 2024 20:46:26 GMT"},"fingerprint":{"sha1":"53:DE:A3:F9:C5:29:D7:4E:74:FA:68:D3:8C:6C:9B:A2:ED:1F:1B:E4","sha256":"A3:EC:5D:F7:CD:6A:D0:33:4E:F9:F0:38:2D:43:6C:54:8A:28:08:69:4B:FC:DD:89:DE:A0:28:94:BD:C9:64:A9"}}},"request":{"raw":"GET /e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/assets/fav.png HTTP/1.1\r\nHost: press-continue.2a6rwlv7ew4w.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Fri, 04 Oct 2024 07:12:41 GMT\r\nContent-Type: image/png\r\nContent-Length: 545\r\nLast-Modified: Mon, 15 Jul 2024 09:36:24 GMT\r\nConnection: keep-alive\r\nKeep-Alive: timeout=10\r\nETag: \"6694ed98-221\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":545,"size_decoded":545,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"418a1f510d301f62a0976ebcf9cda640","sha1":"89b5dbdf41afda654ad9f95e1b2672ffe4c51c20","sha256":"34ca666275595ea71b9787f7269141b947e95af772221947f5ddb060448ed77f","sha512":"f23a30fb385746b495f9b9ced6418e694cdc1787de08b55d3b6df4c00d26056afae0eadb486705aa771823428fc6321e9fff4133edf63e81c009ab065919e742","ssdeep":"","tlshash":"79f026df5ca05e3f89966918b1d64d7cc8a60b970dcf23086040d8703e237d12733012","first_seen":"2023-04-25T23:57:49Z","last_seen":"2026-05-03T08:16:44.301959Z","times_seen":1135,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":76,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@300\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://press-continue.2a6rwlv7ew4w.top/e102479204fcec81f6dfb01f2462a2dfa451531d/ww1/","date":"2024-10-04T07:12:40.978Z","timestamp":1728025960978,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Aug 2024 07:12:45 GMT","end":"Mon, 18 Nov 2024 07:12:44 GMT"},"fingerprint":{"sha1":"C6:E8:36:27:AB:3A:34:33:0B:85:2C:D8:6C:0A:74:34:71:6A:F5:62","sha256":"97:07:06:18:FC:32:44:3C:DA:E4:44:A9:9D:37:9D:62:65:6B:72:3A:C7:4C:0B:35:A1:9B:F1:1A:94:49:F6:39"}}},"request":{"raw":"GET /css2?family=Roboto:wght@300\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://press-continue.2a6rwlv7ew4w.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 04 Oct 2024 07:12:41 GMT\r\ndate: Fri, 04 Oct 2024 07:12:41 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2344,"size_decoded":2344,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (2407), with no line terminators","md5":"1199761e18c07e7c588cad20c66671ce","sha1":"d05501192c0162a0240c9509d5af9b98756f00c9","sha256":"b843f384f7a4f65ece4c150c5f62c12a11803a6a8e0d2f1b572e980a85f4dee4","sha512":"5481767a56cb21d4fe3374e5f8e8f80245405463fc682ea463ba83fc9e2a0131b713367ed8dc144066a5a2c67b276f49ad7d21a7a2cfe06a4d5e50930b7e7ea6","ssdeep":"","tlshash":"f0419d81581b6404da930ee233df7a31bc0f3a2160b28236abfd98be6dc7c22535575d","first_seen":"2024-08-03T21:37:06Z","last_seen":"2024-10-15T09:48:26.257381Z","times_seen":57,"resource_available":false,"data":null}},"time_used":267,"timings":{"blocked":116,"dns":1,"connect":21,"send":0,"wait":31,"receive":0,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}