{"report_id":"14104ed7-6d26-4953-8d24-0e55d03e0c8a","version":6,"status":"done","tags":[],"date":"2024-01-10T13:09:13Z","url":{"schema":"http","addr":"ginedis.com","fqdn":"ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"93.115.28.104","port":0,"asn":16125,"as":"UAB Cherry Servers","country":"Lithuania","country_code":"LT"},"final":{"url":{"schema":"http","addr":"ww1.ginedis.com/","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"title":"ww1.ginedis.com/"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T04:23:26Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"img6.wsimg.com","ip":{"addr":"95.101.10.129","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2008-03-17","domain_rank":15438,"first_seen":"2020-02-20 08:56:58","last_seen":"2024-01-09 09:38:28","alert_count":0,"request_count":2,"received_data":39929,"sent_data":979,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.132","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10 13:11:19","last_seen":"2023-12-09 10:58:51","alert_count":0,"request_count":1,"received_data":150349,"sent_data":430,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ginedis.com","ip":{"addr":"93.115.28.104","port":443,"asn":16125,"as":"UAB Cherry Servers","country":"Lithuania","country_code":"LT"},"domain_registered":"2012-03-20","domain_rank":0,"first_seen":"2012-07-24 14:48:30","last_seen":"2023-09-07 02:42:55","alert_count":0,"request_count":1,"received_data":368,"sent_data":478,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww1.ginedis.com","ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2012-03-20","domain_rank":0,"first_seen":"2013-08-14 15:40:57","last_seen":"2019-02-09 04:55:51","alert_count":0,"request_count":3,"received_data":3755,"sent_data":1342,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img1.wsimg.com","ip":{"addr":"95.101.10.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2008-03-17","domain_rank":9893,"first_seen":"2012-06-20 16:42:31","last_seen":"2024-01-09 18:12:54","alert_count":0,"request_count":2,"received_data":206703,"sent_data":898,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"ww1.ginedis.com/","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-06T14:45:52.992582Z","times_seen":14739858,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.ginedis.com/px.js?ch=1\u0026abp=1","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","size":476,"data":"","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.47d29676.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"95.101.10.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba416ea9ffb635cbb81483ae66bf2406","sha1":"62c44ffcb7e0cb6a32c4875330ccf2838ac436cb","sha256":"a252d63df7948cabaf1ff46f713dd01958c73805e42a3ce8bceeb741cf25a97d","sha512":"488871af0f38e6039dcf3a9ea0ee6eccf69d7acd9787bc7923ff87a15295c905e0b00afa68f23d0562ccb4eae307f4de620ab84f06e3eb8cf443f0f6ea24f3ab","ssdeep":"12288:5eorYmQAjCp6QYn3QYnkiDUk4f0WTI4WY+MiqFvn9UCA:5eosbAj46QYn3QYnka","tlshash":"28f428ce72d1b0b507e352e6c43f280fb2795a25e00cc571eabad9d6986944d823bf5c","size":729495,"data":"","first_seen":"2023-12-13T21:47:43Z","last_seen":"2024-08-20T15:55:40.92116Z","times_seen":1126,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.132","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9b5529b2de208c14a6ac9e541fefc765","sha1":"82b8bd044d99446231039f3fcc452d9de0a60d64","sha256":"b8cce2a8b0dbd4b4063aab6907a450940ce9dd7dcae11e19436940d13cfb3ffc","sha512":"6312b7e96e9c911fe2a6e0335328127845fa917d929318942587d204af48dc5c391dff725ef48ffc16a37c42158b2405ea189101225669e57c49bb94b3e1745b","ssdeep":"1536:E6/bgOGuWJWPy7qnyteyuHUhtgYKtpGvKRPX0ogQZhe0z6BerfjcLsRglCgWIjyt:h4fJhvXQZhe0HroLAgWI29ial4nXMR","tlshash":"fae35c9977a1702653a350b4603f168fb23af96ae84845f4f198c4e47cb8da81237f7d","size":149497,"data":"","first_seen":"2024-01-04T06:00:29Z","last_seen":"2024-08-20T14:01:21.622287Z","times_seen":186,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ginedis.com/","fqdn":"ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"93.115.28.104","port":443,"asn":16125,"as":"UAB Cherry Servers","country":"Lithuania","country_code":"LT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-01-10T13:08:51.828Z","timestamp":1704892131828,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ginedis.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Nov 2023 06:26:27 GMT","end":"Tue, 27 Feb 2024 06:26:26 GMT"},"fingerprint":{"sha1":"08:82:57:DD:08:9D:EC:A6:5C:76:7D:93:32:F0:86:91:34:59:05:78","sha256":"35:06:C1:B4:FA:0C:30:CE:41:F4:D7:58:97:99:0E:07:A7:69:F9:2D:2F:7C:57:2B:78:91:B1:BA:2D:2B:89:C8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ginedis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 11\r\ndate: Wed, 10 Jan 2024 13:08:52 GMT\r\nlocation: http://ww1.ginedis.com\r\nserver: Cowboy\r\nset-cookie: sid=66a9a8c5-afb9-11ee-a522-43e1dc337ea5; path=/; domain=.ginedis.com; expires=Mon, 28 Jan 2092 16:22:59 GMT; max-age=2147483647; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":11,"size_decoded":11,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"32682312d17c7cbf18e73594f5570319","sha1":"60e22121bdd0bc71cdb2bae2a3aa577006b2eae9","sha256":"e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47","sha512":"68337debb9cd659cece621af582ae2bc4b56b9cf06b26c45f4d9eb8beb91d3f36bead287218b5aa2bb4853a1cf1a12017ca57318d7e12f489884fdc6b261dfc1","ssdeep":"","tlshash":"3550000030c0300c0000000c0000030003000000000c033f0c3003c00c000000000003","first_seen":"2023-04-05T04:09:22Z","last_seen":"2025-03-02T06:14:56.641448Z","times_seen":15034,"resource_available":false,"data":null}},"time_used":1036,"timings":{"blocked":258,"dns":0,"connect":29,"send":0,"wait":520,"receive":0,"ssl":224},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.ginedis.com/","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-01-10T13:08:52.612Z","timestamp":1704892132612,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww1.ginedis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Wed, 10 Jan 2024 13:08:52 GMT\r\nContent-Type: text/html\r\nContent-Length: 1543\r\nLast-Modified: Wed, 13 Dec 2023 20:27:48 GMT\r\nConnection: keep-alive\r\nETag: \"657a13c4-607\"\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_SjMjDkInc/jHmf2xIx1eE2vQ0g9pHJOn9qegSuTmIMlzX2ZSKw/Pr9t4+Iw7ZqUAkMAlu+Uc8vTlxnt+r1VXSw\r\nCache-Control: no-cache\r\nX-Content-Type-Options: nosniff\r\nSet-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;\ncountry=NO;Path=/;Max-Age=86400;\ncity=\"\";Path=/;Max-Age=86400;\nexpiry_partner=;Path=/;Max-Age=86400;\n_policy={\"restricted_market\":true,\"tracking_market\":\"explicit\"};Path=/;Max-Age=86400;\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1543,"size_decoded":1543,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1543), with no line terminators","md5":"0b1cd114b167a6c0cd7d896ee0fc0233","sha1":"05d94767c1502e39461cb33b2888a0d8163684f7","sha256":"a67219b74655e4fa4cc0afe9b039133647dee6a0ead0436b18c4b19d8a5a9f5c","sha512":"e7ef02fd69e370457071201e74b859ff5702e36382660a1cc5b20f34674a29d76d0e2be478cd248105b03f522e1ec8fa847b022074e81518ed9bbf91b74cbb6d","ssdeep":"","tlshash":"6f3165e76c49d1848f9047e6f4b3f53cc08aa41acd81dc10d4d2807f64d8bda0d559ac","first_seen":"2023-12-13T21:48:00Z","last_seen":"2024-08-20T15:55:40.796121Z","times_seen":593,"resource_available":false,"data":null}},"time_used":317,"timings":{"blocked":57,"dns":56,"connect":1,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/css/main.39c9adf8.css","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"95.101.10.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.104Z","timestamp":1704892133104,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/static/css/main.39c9adf8.css HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: a5J9M2YSt6lPhvEmRmyZ+sBa+LKCnK73BKIW9VhFDOOYSVWoGPSQGRbMDFrZm88vUN+hRRZEaBw=\r\nx-amz-request-id: K0THQWKS00FBM0S5\r\nlast-modified: Wed, 13 Dec 2023 20:39:01 GMT\r\netag: \"02d22d2dd35cf95e10e23f125eaa7b95\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: HfebimFodtIhQ_CWY194mAz2ippGF4er\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Thu, 09 Jan 2025 13:08:53 GMT\r\ndate: Wed, 10 Jan 2024 13:08:53 GMT\r\ncontent-length: 3172\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3172,"size_decoded":9940,"mime_type":"text/css","magic":"ASCII text, with very long lines (9895)","md5":"02d22d2dd35cf95e10e23f125eaa7b95","sha1":"091e8a4af64d8b3cbc5585d06bada5f68533aa6a","sha256":"40aa985fff517e7a05ee929863678f6ead2ea89c96240f378f643cbe205158a6","sha512":"63a5a38a5acf0da233910ffcd796b36c8bd0209a2a479a8f76311e0132f54608af24230d42421aca1bb5d4d42d7e78b6bad1fad84560285c8bf35a1c81636b4f","ssdeep":"96:2u3J7UtnVCuoaka17fWIMiF670PP3Cy5YewxWOuQWzoKSxbLq8L30uebAnK/EVL:2+ar7I4PyyNtByEj9sN","tlshash":"d92285a051da851181e58d90b6fa9a1dcc1f6297d35a193805eb24c7bcfe8d3c3e06bb","first_seen":"2023-12-08T23:58:36Z","last_seen":"2024-08-20T16:19:21.943271Z","times_seen":1199,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":13,"dns":12,"connect":1,"send":0,"wait":6,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img6.wsimg.com/wrhs/7a94ef1f1f352aaf85d641a223ed6f00/consent-main.js","fqdn":"img6.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"95.101.10.129","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.100Z","timestamp":1704892133100,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /wrhs/7a94ef1f1f352aaf85d641a223ed6f00/consent-main.js HTTP/1.1\r\nHost: img6.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://ww1.ginedis.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\netag: \"7a94ef1f1f352aaf85d641a223ed6f00\"\r\nlast-modified: Wed, 28 Jun 2023 19:00:02 GMT\r\nvary: Accept-Encoding\r\nx-amz-id-2: OkHFuHMqqVnbRFyUG/c+qaDi/MFWK+RWbKnHSyUtC1lnAgu4YWQO7QvFVq7fwaXgk+t85Fqi3Yq0FqtPk1ai2g==\r\nx-amz-request-id: KDH0MQQ1HEGY82GV\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: bn3Q9Dhk70iR2fsppgjyeVJKCiEuLxll\r\ncontent-length: 25518\r\ncache-control: max-age=31536000\r\ndate: Wed, 10 Jan 2024 13:08:53 GMT\r\nserver-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc=\"1704892133170_1600457341_263128046_27_2115_1_8_41\";dur=1\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":25518,"size_decoded":91290,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65466)","md5":"7a94ef1f1f352aaf85d641a223ed6f00","sha1":"699d1d123971f8eb98e51871ce733f47aba6e461","sha256":"923d5daa410b839bdf3f05602c0e33ffdaca14fdc86c040757cbb2709d24d23b","sha512":"16ecb02a183a22be790605f3c3c2aaf625881aa3148ecf37b4ff8eef25197c361fc3e1a1e893a07c78554db511d18568e97eaa181dd034db1268e3e98efd3639","ssdeep":"768:kZuM/ekkrU29jCwgR4psh9sVAyOzbIc6IwmlwBaj1Bz2fGtLHCIpBKSR9NKf5y3z:N9g9Zt9s77dPfht7A/WFHvgU3Pa","tlshash":"5393d59831e5f0b043e750a6943f550af37a2d2de41db060b3a5d8d87a7994fa227f38","first_seen":"2023-09-22T09:48:08Z","last_seen":"2024-09-20T20:15:49.95805Z","times_seen":1595,"resource_available":true,"data":null}},"time_used":104,"timings":{"blocked":44,"dns":38,"connect":3,"send":0,"wait":6,"receive":2,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.47d29676.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"95.101.10.131","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.102Z","timestamp":1704892133102,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/static/js/main.47d29676.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: lRoCs486eDdfGpda1ROReFGcgfU74jck854KGV1QhxAArD/1Q/By3TCATfAX1o1p1M2IWcoJgsk=\r\nx-amz-request-id: 74G6JTJ6VYA05A09\r\nlast-modified: Wed, 13 Dec 2023 20:38:56 GMT\r\netag: \"ba416ea9ffb635cbb81483ae66bf2406\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: hjRn8sF.vDMcSSzoQ9t4r3HYHrBgf2Fb\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Thu, 09 Jan 2025 13:08:53 GMT\r\ndate: Wed, 10 Jan 2024 13:08:53 GMT\r\ncontent-length: 202275\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":202275,"size_decoded":729495,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65465)","md5":"ba416ea9ffb635cbb81483ae66bf2406","sha1":"62c44ffcb7e0cb6a32c4875330ccf2838ac436cb","sha256":"a252d63df7948cabaf1ff46f713dd01958c73805e42a3ce8bceeb741cf25a97d","sha512":"488871af0f38e6039dcf3a9ea0ee6eccf69d7acd9787bc7923ff87a15295c905e0b00afa68f23d0562ccb4eae307f4de620ab84f06e3eb8cf443f0f6ea24f3ab","ssdeep":"12288:5eorYmQAjCp6QYn3QYnkiDUk4f0WTI4WY+MiqFvn9UCA:5eosbAj46QYn3QYnka","tlshash":"28f428ce72d1b0b507e352e6c43f280fb2795a25e00cc571eabad9d6986944d823bf5c","first_seen":"2023-12-13T21:47:43Z","last_seen":"2024-08-20T15:55:40.92116Z","times_seen":1126,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":20,"dns":11,"connect":3,"send":0,"wait":26,"receive":33,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img6.wsimg.com/wrhs/a9b1ba6f900ffd6f58214865791494f1/consent-main.css","fqdn":"img6.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"95.101.10.129","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.101Z","timestamp":1704892133101,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /wrhs/a9b1ba6f900ffd6f58214865791494f1/consent-main.css HTTP/1.1\r\nHost: img6.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://ww1.ginedis.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\netag: \"a9b1ba6f900ffd6f58214865791494f1\"\r\nlast-modified: Tue, 20 Jun 2023 17:56:53 GMT\r\nvary: Accept-Encoding\r\nx-amz-id-2: JBoyugSdvJIFKxvgfwxtI3HjrETm+e3UJlICzi5juRcB4Rk7JUUfX64WFXFGC7/52Ot6dfB9OT21USlPCrwyBg==\r\nx-amz-request-id: AKXTRK1VCZ22K1W2\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: b2y.tOcDNfHOP_Oef8_Cd8YL.SWnVj0n\r\ncontent-length: 12976\r\ncache-control: max-age=31536000\r\ndate: Wed, 10 Jan 2024 13:08:53 GMT\r\nserver-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc=\"1704892133158_1600457341_263128042_361_1789_1_0_41\";dur=1\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12976,"size_decoded":57442,"mime_type":"text/css","magic":"ASCII text, with very long lines (7968)","md5":"a9b1ba6f900ffd6f58214865791494f1","sha1":"b6755d2bd8b0fdf6a6ac6f0fe3f21e67fc92a4db","sha256":"97b7f7d052989919764f5b91f381e19fe6fcc02b2c79e3c62c2eb32534622839","sha512":"61f57a1b50a2b2265bb8d5ec13c3e753431b564705fc3c5b2d9ba4c17f640694c6166312f82534027899e40a182de77542108560c3f94d4984e7a9bd168345e4","ssdeep":"1536:24SM/NMz3oseZsff4toTwoHXujBs+s+7B6x3z11393PCOy:JNMz3oseZsfQoN+Z7ox3z11393Pry","tlshash":"1f43fbdf9c88be3daf17a50057dd10dea21db7a72c2212d9a415bb904ecf7e426d012e","first_seen":"2023-06-22T11:15:22Z","last_seen":"2024-09-20T20:15:49.993245Z","times_seen":2544,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":41,"dns":39,"connect":1,"send":0,"wait":40,"receive":1,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.ginedis.com/px.js?ch=1\u0026abp=1","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.096Z","timestamp":1704892133096,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=1\u0026abp=1 HTTP/1.1\r\nHost: ww1.ginedis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nCookie: caf_ipaddr=91.90.42.154; country=NO; city=\"\"; expiry_partner=; _policy={\"restricted_market\":true,\"tracking_market\":\"explicit\"}\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Wed, 10 Jan 2024 13:08:53 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Wed, 13 Dec 2023 20:27:52 GMT\r\nConnection: keep-alive\r\nETag: \"657a13c8-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":476,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":101,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.ginedis.com/px.js?ch=2\u0026abp=1","fqdn":"ww1.ginedis.com","domain":"ginedis.com","tld":"com"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.099Z","timestamp":1704892133099,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=2\u0026abp=1 HTTP/1.1\r\nHost: ww1.ginedis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nCookie: caf_ipaddr=91.90.42.154; country=NO; city=\"\"; expiry_partner=; _policy={\"restricted_market\":true,\"tracking_market\":\"explicit\"}\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Wed, 10 Jan 2024 13:08:53 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Wed, 13 Dec 2023 20:27:52 GMT\r\nConnection: keep-alive\r\nETag: \"657a13c8-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":476,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":2,"connect":1,"send":0,"wait":202,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.132","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.ginedis.com/","date":"2024-01-10T13:08:53.095Z","timestamp":1704892133095,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:09:47 GMT","end":"Mon, 12 Feb 2024 08:09:46 GMT"},"fingerprint":{"sha1":"50:3E:DA:12:EC:7F:39:A5:E9:4F:16:D7:D6:AA:BF:45:15:44:7F:E9","sha256":"98:2D:C0:52:3D:84:7D:B5:89:AE:22:3E:DD:D8:37:86:72:79:D7:32:40:D6:03:55:D8:A6:F1:70:53:DF:48:95"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1 HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.ginedis.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Wed, 10 Jan 2024 13:08:53 GMT\r\nexpires: Wed, 10 Jan 2024 13:08:53 GMT\r\ncache-control: private, max-age=3600\r\netag: \"2659151770424299052\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://www.adsensecustomsearchads.com\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":149497,"size_decoded":149497,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (1888)","md5":"9b5529b2de208c14a6ac9e541fefc765","sha1":"82b8bd044d99446231039f3fcc452d9de0a60d64","sha256":"b8cce2a8b0dbd4b4063aab6907a450940ce9dd7dcae11e19436940d13cfb3ffc","sha512":"6312b7e96e9c911fe2a6e0335328127845fa917d929318942587d204af48dc5c391dff725ef48ffc16a37c42158b2405ea189101225669e57c49bb94b3e1745b","ssdeep":"1536:E6/bgOGuWJWPy7qnyteyuHUhtgYKtpGvKRPX0ogQZhe0z6BerfjcLsRglCgWIjyt:h4fJhvXQZhe0HroLAgWI29ial4nXMR","tlshash":"fae35c9977a1702653a350b4603f168fb23af96ae84845f4f198c4e47cb8da81237f7d","first_seen":"2024-01-04T06:00:29Z","last_seen":"2024-08-20T14:01:21.622287Z","times_seen":186,"resource_available":true,"data":null}},"time_used":446,"timings":{"blocked":204,"dns":3,"connect":8,"send":0,"wait":20,"receive":11,"ssl":198},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}