{"report_id":"1431cf93-c42b-4aeb-ae72-7652db13db52","version":6,"status":"done","tags":[],"date":"2025-11-19T09:49:43Z","url":{"schema":"http","addr":"greenhandlooms.com/","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"13.248.213.45","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"greenhandlooms.com/lander","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"title":"greenhandlooms.com/lander","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"greenhandlooms.com/","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"13.248.213.45","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-24T09:49:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ep2.adtrafficquality.google","ip":{"addr":"142.250.178.97","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-11-17","domain_rank":3229,"first_seen":"2024-08-13T12:56:28Z","last_seen":"2025-11-16T23:55:18.939155Z","alert_count":0,"request_count":2,"received_data":34547,"sent_data":994,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2025-11-16T22:20:15.656981Z","alert_count":0,"request_count":1,"received_data":135452,"sent_data":445,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ep1.adtrafficquality.google","ip":{"addr":"216.58.207.194","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-11-17","domain_rank":3093,"first_seen":"2024-07-24T04:17:49Z","last_seen":"2025-11-16T22:40:24.586767Z","alert_count":0,"request_count":1,"received_data":11243,"sent_data":537,"comment":"","tags":null,"fingerprints":null},{"fqdn":"greenhandlooms.com","ip":{"addr":"76.223.67.189","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2022-11-04","domain_rank":0,"first_seen":"2025-09-28T10:09:24.921148Z","last_seen":"2025-09-28T10:09:24.921148Z","alert_count":0,"request_count":2,"received_data":1442,"sent_data":1019,"comment":"","tags":null,"fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"img1.wsimg.com","ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2008-03-17","domain_rank":58983,"first_seen":"2012-06-20T14:42:31Z","last_seen":"2025-11-16T22:33:51.81409Z","alert_count":0,"request_count":4,"received_data":921903,"sent_data":1870,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"syndicatedsearch.goog","ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-04-14","domain_rank":5365,"first_seen":"2023-09-25T09:30:59Z","last_seen":"2025-11-16T22:25:15.615087Z","alert_count":0,"request_count":1,"received_data":683,"sent_data":573,"comment":"","tags":null,"fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"greenhandlooms.com/","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"76.223.67.189","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3effca764b1325dc476a4f275bb79d63","sha1":"83e96d57b2196e7dc7422e373d844941644d29ba","sha256":"6525c7cbcf52f274ffc5cbe01fd43c03fd77e9463d0757999a596776f0d4184b","sha512":"72188e1090ac227d6b67206326ff52924f0a264371024d22b1bed0a83a327e338b4044955da06d6bf02aa691b776990da4fddb1bdfead635696598d67646ad1b","ssdeep":"","tlshash":"20900289b011e5c411fa55265b17ba086063219bca105a4444010861653470f451abca","size":56,"data":"","first_seen":"2025-03-02T07:03:41.445505Z","last_seen":"2026-04-04T11:49:53.298633Z","times_seen":110840,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"greenhandlooms.com/lander","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"76.223.67.189","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0101edc617f0c823dd41e318c9d39fc9","sha1":"d6464936a6d2fa4c765c4d92a2771f812ee1898f","sha256":"ac6eaa139076a0142af7792131f998e6fd1805556c5f7174c3bcb149b2fe3aae","sha512":"7571051c857497560db8f9a8e56be6f7f0be0d615326808157a554ce64d07ff1dd67ab9cbb1cd354c42420d95173d076027e7f887e41b31defac0d2b3eb11df5","ssdeep":"","tlshash":"f67000280080000088308aeb320b2a8c322cf0e0a0008b20b230228220c00038c02080","size":25,"data":"","first_seen":"2025-03-02T07:03:41.447619Z","last_seen":"2026-04-04T11:49:53.300611Z","times_seen":42299,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026gdabp=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5d56e8214bf3eb7578246b4137ac707","sha1":"10bb0b4a388292c09af3d8b633d03a55bb6916bb","sha256":"18dd41aa89b74792a456aa80627eabd2d84c5f25ea0ead4582031ccf16f7f496","sha512":"3158b9ad10b1cf314077aed9307dc2982a04a4632f76a16880d78d933714f5a4a581417f59d5171c892df2cce09064843a39efc74465ea239155523f18ba9add","ssdeep":"1536:fFEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:nuydkEiR5IW8YlmDD7MJ/2f","tlshash":"b2d34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","size":134736,"data":"","first_seen":"2025-11-14T14:34:38.656236Z","last_seen":"2025-12-02T21:00:44.404344Z","times_seen":8285,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.beef3a82.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"fdbb7fc3477437d3a6dfafafef676794","sha1":"39e88c178a28837f411f8dbffa8eb9368026ea25","sha256":"f58ba0f1a6135984ebf60a9d010d61ab3754a771d742ad9e16585bcfca3c715f","sha512":"5a53d3f93f06e756fe8a5a6f1cb6e109ebc05ff0ee7516ef7839ea2ff3edd6a0ae7c9310d2e842a170db0f5113b24b08756494bfac2bd3e0b50e27be5b83ef8d","ssdeep":"12288:7hdrdXeU6H3VUNJA7Ij70EHwzGOcQYnTsQYnTPDUk4f0WTI4WugqciqXD3frzzUc:1/A7Ij7jHwzGOcQYnTsQYnTvrzzpL","tlshash":"b5053bce76e1b0b407e291eac43f590fb3796e15d00cc561eb79c9daa46984a813bf1c","size":853181,"data":"","first_seen":"2025-11-13T21:27:32.485433Z","last_seen":"2025-11-25T21:12:37.537182Z","times_seen":4655,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2.js","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.178.97","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8fe3ea2f81e289e6b14222e898086c5","sha1":"0e9a1227955675736e02c596906bee72bc33d7d6","sha256":"a7f65c0446b6cac3175458f6388304d0c23e70d11fa0db20920a619f1bc18623","sha512":"3bd99998aa1b5d7543775769952adc52809f861ca023b6daadf6b7d23411411a6a9470d98c7b8543573e9a6047a24e14b5feaf45e14a22d98e64d0f019718670","ssdeep":"384:dxSMqC/d0d0lxDKyqdeWFy3Wxy9cT4nGllKnnk0TEYRWjfJtncu:i0qKlYyqdeWk3Z9w4G+tFWjfJtnZ","tlshash":"8892c6cab6d2f4624363b9b1a13f100ff13eaca9d84c5464a084e4e0bd759a94367f7c","size":19990,"data":"","first_seen":"2025-05-19T23:59:48.474751Z","last_seen":"2026-02-26T18:27:55.354921Z","times_seen":175417,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2/237/runner.html","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.178.97","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"25e6119e62d1ba8afd52ec0f623a82bd","sha1":"5a880ff68e376984e4bcd6a646026c67438ecbac","sha256":"dec2ecd2607f2e892cd7041307752b509b1ea8db61ec38cc3a5bb9664ac48f62","sha512":"31ca39bd744be12fc88109f84a02d66290fb50829c5f41c31f938fabeb121eb2463366edfdf6ba4ef5898cc922b1bcda29658506e4162f4f3044428db4b5ca40","ssdeep":"","tlshash":"5911cbc577a2e441813615abd50f144bf575e47758acb410e6a1c4e4acb0abb443ab06","size":956,"data":"","first_seen":"2025-03-12T19:00:14.122018Z","last_seen":"2026-02-26T17:00:03.80743Z","times_seen":79470,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"greenhandlooms.com/lander","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"76.223.67.189","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-19T09:49:21.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"greenhandlooms.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sun, 09 Nov 2025 11:06:25 GMT","end":"Tue, 26 May 2026 11:06:25 GMT"},"fingerprint":{"sha1":"0F:34:49:53:5B:5A:0C:E6:60:CA:FE:D0:59:7D:BA:A9:02:56:92:C9","sha256":"3D:91:B7:A7:29:A4:AE:8B:95:27:68:F4:A1:EF:B6:2C:49:37:DF:21:EC:4D:D8:FB:86:34:AB:44:78:B5:C1:11"}}},"request":{"raw":"GET /lander HTTP/1.1\r\nHost: greenhandlooms.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: private, max-age=86400\r\nConnection: keep-alive\r\nContent-Type: text/html\r\nDate: Wed, 19 Nov 2025 09:49:22 GMT\r\nServer: openresty\r\nSet-Cookie: traffic_target=reseller; Path=/; Max-Age=86400\ncaf_ipaddr=91.90.42.154; Path=/; Max-Age=86400\ncountry=NO; Path=/; Max-Age=86400\ncity=Oslo; Path=/; Max-Age=86400\nlander_type=parkweb-reseller; Path=/; Max-Age=86400\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_KmZbjKq/4VKj1+QXU59VJWf9PQnlQLESFYruDNLitYXwS/jcAW+w3OfmayN2ZfzsLfyWjkkKofVUOwxioltIRQ\r\nX-Content-Type-Options: nosniff\r\nContent-Length: 553\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"OpenResty","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":553,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (552)","md5":"a197c962b5edc8ced20eeb3abfd3700d","sha1":"91896377d3c083f3a2a6dcc913f6c897057d503e","sha256":"018399b50572aea2a0a5c8006960ada715d02843e30a0ff86ec06c3a657ac0a3","sha512":"e89252c54ce537c837047f00a3d751c82d06b5fd1ed48930074f94a14690c61856db887b3bc57b471d37b2b921aa6c712dadc8e59197d1bd8d5934135ae77f9d","ssdeep":"","tlshash":"7cf0c0d3dca2c51c0f70c6ea7d22f72cc00ae52ded91e940a495007358d8be34d5a854","first_seen":"2025-11-13T21:27:32.484543Z","last_seen":"2025-11-25T21:12:37.52514Z","times_seen":3897,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/px.js?ch=2\u0026abp=2\u0026gdabp=true","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /parking-lander/px.js?ch=2\u0026abp=2\u0026gdabp=true HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://greenhandlooms.com/\r\nOrigin: https://greenhandlooms.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: B30DUrnt9j/7W6Yh0siA85m3EPvW1ODWoQwhT8KnAJad/9prb1RtpO/oIGdmNw2AaapXZMdbaA8GLUDlvTe81w==\r\nx-amz-request-id: MW7ZJVP7JBXT3QR5\r\nlast-modified: Thu, 13 Nov 2025 21:23:08 GMT\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: qjuTyHKwytp8Cj1YNE9IhDZ8RwBfxy_R\r\naccept-ranges: bytes\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 20\r\ncache-control: max-age=31536000\r\nexpires: Thu, 19 Nov 2026 09:49:22 GMT\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=unknown\u0026output=uds_ads_only\u0026zx=4850um3uz8et\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026pbt=ri\u0026emsg=sodar_latency\u0026rt=133\u0026ea=9","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"142.251.38.110","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.561Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:59 GMT","end":"Mon, 19 Jan 2026 08:36:58 GMT"},"fingerprint":{"sha1":"04:42:C4:BC:7C:7E:C5:79:63:C6:CA:68:42:4C:72:F0:57:E6:1A:F7","sha256":"92:D9:05:7F:FC:2F:8D:2D:AE:B1:71:BC:1D:AF:16:92:92:9D:22:BC:1B:76:CB:16:99:DF:62:CC:1E:F4:40:BE"}}},"request":{"raw":"GET /afs/gen_204?client=unknown\u0026output=uds_ads_only\u0026zx=4850um3uz8et\u0026cd_fexp=72717108%2C73110182%2C17301559\u0026pbt=ri\u0026emsg=sodar_latency\u0026rt=133\u0026ea=9 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-0xJHfAaYfIuzm4hX42gx9A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Web Server","description":"","website":"https://en.wikipedia.org/wiki/Google_Web_Server","common_platform_enumeration":"cpe:2.3:a:google:web_server:*:*:*:*:*:*:*:*","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":58,"dns":0,"connect":7,"send":0,"wait":28,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"greenhandlooms.com/","fqdn":"greenhandlooms.com","domain":"greenhandlooms.com","tld":"com"},"ip":{"addr":"76.223.67.189","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-19T09:49:20.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"greenhandlooms.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Sun, 09 Nov 2025 11:06:25 GMT","end":"Tue, 26 May 2026 11:06:25 GMT"},"fingerprint":{"sha1":"0F:34:49:53:5B:5A:0C:E6:60:CA:FE:D0:59:7D:BA:A9:02:56:92:C9","sha256":"3D:91:B7:A7:29:A4:AE:8B:95:27:68:F4:A1:EF:B6:2C:49:37:DF:21:EC:4D:D8:FB:86:34:AB:44:78:B5:C1:11"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: greenhandlooms.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/html\r\nDate: Wed, 19 Nov 2025 09:49:21 GMT\r\nContent-Length: 114\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":114,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"e89f75f918dbdcee28604d4e09dd71d7","sha1":"f9d9055e9878723a12063b47d4a1a5f58c3eb1e9","sha256":"6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023","sha512":"8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0","ssdeep":"","tlshash":"eeb092ddbc61e48018e535511ea3b60d146a22ebb9018b4018c00836a96035f8d0aac5","first_seen":"2024-03-15T21:37:10Z","last_seen":"2026-04-04T11:49:53.293477Z","times_seen":123287,"resource_available":true,"data":null}},"time_used":2645,"timings":{"blocked":1267,"dns":29,"connect":1,"send":0,"wait":111,"receive":0,"ssl":1234},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/css/main.64e00bed.css","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /parking-lander/static/css/main.64e00bed.css HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: PFu42ho+ZhTCiEnbDWJnS34BXj1pzC6DEASn4OSOJqq5XuVWiAt+y9ONTabWDnZlG8e0TUNmJ9hYSH6sBtr30n5jrRup2N7A\r\nx-amz-request-id: JGFB59WWVQ7V2KB6\r\nlast-modified: Thu, 13 Nov 2025 21:23:07 GMT\r\netag: \"c758f9e73c79799ad5e034440e5e8151\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 8N7drAHRRi4skNgL48bkDrj3eeI_RmX5\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Thu, 19 Nov 2026 09:49:22 GMT\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\ncontent-length: 10512\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":66182,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c758f9e73c79799ad5e034440e5e8151","sha1":"09229af03b9ea88aef590c7980e8420fa1344c4a","sha256":"c08338b04727001500acd771177eba90612f4fe4f25162f389e87f0ad0aa1cd1","sha512":"d5ed918322cf8c820a47589b6462d6f6d9dbd87838b439991be293ddb7b0f17796d6f92431cad524baad663c00cc4d3edc505cfd63ad53f0f65ab0d00251d3a9","ssdeep":"1536:Y3U8GKPb0aLNLi6qjUYyQylaBVvvti6HRmkb11evQOHZqec1KPeFezIc7CD:z8GKPb0aLNLi6qjUYyQylQ6qec1KPeFp","tlshash":"2753b9586588993e7d3f721c7279869ca33870bbd27667ac9023ee3606c6af536c1214","first_seen":"2025-09-18T16:24:36.071782Z","last_seen":"2026-03-22T12:40:51.580134Z","times_seen":45151,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":32,"dns":19,"connect":1,"send":0,"wait":5,"receive":1,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2.js","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.178.97","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:37:02 GMT","end":"Mon, 19 Jan 2026 08:37:01 GMT"},"fingerprint":{"sha1":"5B:81:01:13:31:53:AC:44:56:1C:57:C7:70:58:34:6E:59:28:E1:9B","sha256":"A9:5F:4E:26:DC:92:99:20:BB:46:02:CF:0B:A2:78:A2:FF:49:FF:D5:04:22:62:02:FB:45:E3:F3:C5:54:32:81"}}},"request":{"raw":"GET /sodar/sodar2.js HTTP/1.1\r\nHost: ep2.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"adspam-signals-scs\"\r\nreport-to: {\"group\":\"adspam-signals-scs\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs\"}]}\r\ncontent-length: 7188\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\nexpires: Wed, 19 Nov 2025 09:49:22 GMT\r\ncache-control: private, max-age=3000\r\netag: \"1747411493688989\"\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19990,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1398)","md5":"a8fe3ea2f81e289e6b14222e898086c5","sha1":"0e9a1227955675736e02c596906bee72bc33d7d6","sha256":"a7f65c0446b6cac3175458f6388304d0c23e70d11fa0db20920a619f1bc18623","sha512":"3bd99998aa1b5d7543775769952adc52809f861ca023b6daadf6b7d23411411a6a9470d98c7b8543573e9a6047a24e14b5feaf45e14a22d98e64d0f019718670","ssdeep":"384:dxSMqC/d0d0lxDKyqdeWFy3Wxy9cT4nGllKnnk0TEYRWjfJtncu:i0qKlYyqdeWk3Z9w4G+tFWjfJtnZ","tlshash":"8892c6cab6d2f4624363b9b1a13f100ff13eaca9d84c5464a084e4e0bd759a94367f7c","first_seen":"2025-05-19T23:59:48.474751Z","last_seen":"2026-02-26T18:27:55.354921Z","times_seen":175417,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":111,"dns":1,"connect":14,"send":0,"wait":27,"receive":1,"ssl":95},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026gdabp=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:35:45 GMT","end":"Mon, 19 Jan 2026 08:35:44 GMT"},"fingerprint":{"sha1":"88:42:9A:E3:85:29:1D:A4:9A:60:E6:5F:C1:71:A6:01:27:91:C8:BC","sha256":"6D:0F:B5:30:E0:1A:7B:ED:55:DD:26:C8:34:D0:0A:34:65:0E:E8:E4:93:E9:8C:DF:D6:3C:63:71:A9:AE:DF:D2"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026gdabp=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\nexpires: Wed, 19 Nov 2025 09:49:22 GMT\r\ncache-control: private, max-age=3600\r\netag: \"7661907799730083462\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":134736,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2840)","md5":"d5d56e8214bf3eb7578246b4137ac707","sha1":"10bb0b4a388292c09af3d8b633d03a55bb6916bb","sha256":"18dd41aa89b74792a456aa80627eabd2d84c5f25ea0ead4582031ccf16f7f496","sha512":"3158b9ad10b1cf314077aed9307dc2982a04a4632f76a16880d78d933714f5a4a581417f59d5171c892df2cce09064843a39efc74465ea239155523f18ba9add","ssdeep":"1536:fFEUx+JqcTHya4OCRPmymABChf8dsR5rxyW8/gccjKUYiQemXm61D7MZduCxVXkr:nuydkEiR5IW8YlmDD7MJ/2f","tlshash":"b2d34bcdb3a1742643a3a1b5607f414fb139b8a5a80c84a4f199d8e87c74dad4237fbd","first_seen":"2025-11-14T14:34:38.656236Z","last_seen":"2025-12-02T21:00:44.404344Z","times_seen":8285,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":115,"dns":1,"connect":7,"send":0,"wait":21,"receive":0,"ssl":106},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep1.adtrafficquality.google/getconfig/sodar?sv=200\u0026tid=afs\u0026tv=1234567890\u0026st=env\u0026sjk=nHUMqVpYQju5VCFItDe3mA==\u0026sde=1","fqdn":"ep1.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"216.58.207.194","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:36:56 GMT","end":"Mon, 19 Jan 2026 08:36:55 GMT"},"fingerprint":{"sha1":"9A:0A:53:7B:B4:C0:0A:9F:26:A7:9E:31:1B:C0:4D:3B:33:4B:23:27","sha256":"A5:65:20:57:2E:8A:60:B7:56:8C:E9:E0:ED:44:1D:3F:61:C1:AC:62:D6:82:21:9B:16:7A:06:84:4D:AF:F4:E1"}}},"request":{"raw":"GET /getconfig/sodar?sv=200\u0026tid=afs\u0026tv=1234567890\u0026st=env\u0026sjk=nHUMqVpYQju5VCFItDe3mA==\u0026sde=1 HTTP/1.1\r\nHost: ep1.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://greenhandlooms.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-origin: *\r\ncontent-type: application/json; charset=UTF-8\r\nx-content-type-options: nosniff\r\ncontent-disposition: attachment; filename=\"f.txt\"\r\ncontent-encoding: br\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\nserver: cafe\r\ncontent-length: 8074\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10686,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8d45f42ae7954586fdc12641e81f2058","sha1":"fbd3c3373f697506dfa7440abcd91295f1d83ec1","sha256":"958cf65f35656c2f2f0621e0e421788cd38a9314b54bce9232ceeb91b8bdf983","sha512":"ecc754c17f5e32c127407411c2379f1acb8b7fafa2231ad7b1377cce6755026a621114d4beb32a684914034b459fe3924272db47b7be12be33727d2005d894e3","ssdeep":"192:pxk/ZJ1hHwI1rkICBBMr9GgsjsiB5SZs6qVRDIVpjFYAIdn0apene2z9frtY4Ts:Xuvp14ur9JiJtOvYAIeaSe+9q4Ts","tlshash":"8622d02f0262a83f59091463c56305cc9dc7eac7c6f9bc86939c257521d9b0d8cf87b6","first_seen":"2025-11-19T09:49:44.718914Z","last_seen":"2025-11-19T09:49:44.718914Z","times_seen":1,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":57,"dns":0,"connect":8,"send":0,"wait":25,"receive":1,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.beef3a82.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /parking-lander/static/js/main.beef3a82.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: nTTA3FFFIl45bhb3k66VU7ZHYNEH7TUt1+X8pyxIERFMXhvn+V86u5QxGc822H8qgRYq+FfXjyI=\r\nx-amz-request-id: 4M56570KNRBCF9Z6\r\nlast-modified: Thu, 13 Nov 2025 21:23:03 GMT\r\netag: \"fdbb7fc3477437d3a6dfafafef676794\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: b1JunHl9NIDKjy.vfMfn79rMmRc551yQ\r\naccept-ranges: bytes\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 226013\r\ncache-control: max-age=31536000\r\nexpires: Thu, 19 Nov 2026 09:49:22 GMT\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":853181,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65465)","md5":"fdbb7fc3477437d3a6dfafafef676794","sha1":"39e88c178a28837f411f8dbffa8eb9368026ea25","sha256":"f58ba0f1a6135984ebf60a9d010d61ab3754a771d742ad9e16585bcfca3c715f","sha512":"5a53d3f93f06e756fe8a5a6f1cb6e109ebc05ff0ee7516ef7839ea2ff3edd6a0ae7c9310d2e842a170db0f5113b24b08756494bfac2bd3e0b50e27be5b83ef8d","ssdeep":"12288:7hdrdXeU6H3VUNJA7Ij70EHwzGOcQYnTsQYnTPDUk4f0WTI4WugqciqXD3frzzUc:1/A7Ij7jHwzGOcQYnTsQYnTvrzzpL","tlshash":"b5053bce76e1b0b407e291eac43f590fb3796e15d00cc561eb79c9daa46984a813bf1c","first_seen":"2025-11-13T21:27:32.485433Z","last_seen":"2025-11-25T21:12:37.537182Z","times_seen":4655,"resource_available":true,"data":null}},"time_used":87,"timings":{"blocked":35,"dns":20,"connect":3,"send":0,"wait":4,"receive":9,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/px.js?ch=1\u0026abp=1\u0026gdabp=true","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"2.22.225.50","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.419Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Fri, 05 Sep 2025 18:24:05 GMT","end":"Wed, 07 Oct 2026 18:24:05 GMT"},"fingerprint":{"sha1":"0E:95:B5:3C:BC:57:5B:29:44:36:31:82:4A:13:83:C0:BB:C6:51:2D","sha256":"2E:41:DD:15:BE:3D:3A:3A:29:F0:65:E6:52:EC:88:54:C4:60:01:9E:68:96:30:F3:2A:31:D9:A1:95:CA:69:24"}}},"request":{"raw":"GET /parking-lander/px.js?ch=1\u0026abp=1\u0026gdabp=true HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://greenhandlooms.com/\r\nOrigin: https://greenhandlooms.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: 81nocKEnBbeibFpRGcrSO68Pt9wYyEsO2ZoOB5vYjbKQDAzAZqSV+HUz6VVSzqlEaruccRBhnvM=\r\nx-amz-request-id: MW7H1BWFJPQ09T02\r\nlast-modified: Thu, 13 Nov 2025 21:23:08 GMT\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: qjuTyHKwytp8Cj1YNE9IhDZ8RwBfxy_R\r\naccept-ranges: bytes\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 20\r\ncache-control: max-age=31536000\r\nexpires: Thu, 19 Nov 2026 09:49:22 GMT\r\ndate: Wed, 19 Nov 2025 09:49:22 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T11:49:30.368697Z","times_seen":13330398,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ep2.adtrafficquality.google/sodar/sodar2/237/runner.html","fqdn":"ep2.adtrafficquality.google","domain":"adtrafficquality.google","tld":"google"},"ip":{"addr":"142.250.178.97","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://greenhandlooms.com/lander","date":"2025-11-19T09:49:22.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adtrafficquality.google","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Oct 2025 08:37:02 GMT","end":"Mon, 19 Jan 2026 08:37:01 GMT"},"fingerprint":{"sha1":"5B:81:01:13:31:53:AC:44:56:1C:57:C7:70:58:34:6E:59:28:E1:9B","sha256":"A9:5F:4E:26:DC:92:99:20:BB:46:02:CF:0B:A2:78:A2:FF:49:FF:D5:04:22:62:02:FB:45:E3:F3:C5:54:32:81"}}},"request":{"raw":"GET /sodar/sodar2/237/runner.html HTTP/1.1\r\nHost: ep2.adtrafficquality.google\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://greenhandlooms.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"adspam-signals-scs\"\r\nreport-to: {\"group\":\"adspam-signals-scs\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs\"}]}\r\ncontent-length: 5044\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 19 Nov 2025 09:21:09 GMT\r\nexpires: Wed, 19 Nov 2025 10:11:09 GMT\r\ncache-control: public, max-age=3000\r\nage: 1693\r\nlast-modified: Tue, 13 May 2025 23:17:50 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13159,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (2024)","md5":"0120a1d624ff8fc3ec792d93a7133947","sha1":"1e3bd23df78ff2c60b187b40a0c6505be9ab889f","sha256":"14b660a511e14a9a481c6fe43c576f36c61b656cfd379728c54f1128e1855966","sha512":"84286e299ebc6690ee904b5581cd6aaf6b59d06200b61156923301484d1b75fa517894167c4f4777553ba09c840a2d74a723e3ff112448f00514d910dfd172c5","ssdeep":"192:pl/6xS2OASROqI3wgh5MXDc9EAOaK3qzfaGDCiMgIcTa1mx:rz2NQJIVsTiMH3qzfcOIr1mx","tlshash":"4842a7ccbad2b0210353b4f1a13f400ff13ea8aae44c9954b181e8e17cb56a94667f7d","first_seen":"2025-05-19T23:59:48.478548Z","last_seen":"2026-02-26T18:27:55.136579Z","times_seen":169945,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}