{"report_id":"16d5932f-6c2d-40ec-96d0-caba39651080","version":6,"status":"done","tags":[],"date":"2025-01-26T10:25:55Z","url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"title":"alcuth.top - Dette nettstedet er til salgs! - alcuth Ressurser og informasjon"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-04-06T10:25:55Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"afs.googleusercontent.com","ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-11-17","domain_rank":12123,"first_seen":"2013-05-06T19:11:00Z","last_seen":"2025-01-22T02:34:36.929334Z","alert_count":0,"request_count":2,"received_data":2085,"sent_data":977,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-11-03","domain_rank":0,"first_seen":"2025-01-26T10:25:41.752411Z","last_seen":"2025-01-26T10:25:41.752411Z","alert_count":3,"request_count":2,"received_data":9218,"sent_data":1263,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img.sedoparking.com","ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"domain_registered":"2001-09-18","domain_rank":54200,"first_seen":"2013-04-22T22:23:29Z","last_seen":"2025-01-22T04:40:26.245739Z","alert_count":0,"request_count":2,"received_data":18692,"sent_data":770,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2025-01-22T01:41:38.580872Z","alert_count":0,"request_count":1,"received_data":53736,"sent_data":395,"comment":"","tags":null,"fingerprints":null},{"fqdn":"syndicatedsearch.goog","ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-04-14","domain_rank":0,"first_seen":"2023-09-25T09:30:59Z","last_seen":"2025-01-22T02:34:42.873878Z","alert_count":0,"request_count":7,"received_data":156470,"sent_data":5395,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:30Z","timestamp":1737887130,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.25","port":39956,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:30.588000+0000\",\"flow_id\":119988729597696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":39956,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saiseen-co-jp.aesense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":731,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:30.511744+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5d61f84a2a6d315848cdbaf3b3e26b6c","sha1":"86207855047355df336061ac50db661724e986e8","sha256":"df7d90bc723e5951ba83b06234a1d009f589d9461d7f9dd30feb003931670130","sha512":"8525d932425a183ad537dc9061c1460de8a82d0801d8519722c4e469ae998caa8967f37ca1da6dbd4cbcb530997914d132e6180cbce27797ffb6aa6a5f74e068","ssdeep":"1536:qEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:9hNIKordHd4AIPu32TXz3fDas","tlshash":"dee35d9d73a1742253a394f4607f018fb13af965e80888b4b198d8e47cb4da94277fbd","size":147188,"data":"","first_seen":"2025-01-22T23:48:04.039949Z","last_seen":"2025-01-29T14:03:38.223297Z","times_seen":360,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a52508e13fb3918575ef8d4e4129a945","sha1":"99ed468ff76b8394fb8107ad589cdcc84c0ead44","sha256":"37985bccd83faf6df6dc5c1b58b5352eadae66cd1196aa756e06fc97b9eb748a","sha512":"8842d5a96979e9a16dcd16b78fd21de34914a976f8d1ae7343e640a9266dc0673740ae9ae89ec4a9ea25964fc81f777e3be06a70317775929de80eb5788bfed2","ssdeep":"96:n/NUiE0xdLvOETUCExICTh68ax4MCTh69+fCt8ruAkg4Jl0UOc:nOiDLvOyxMICNlaxfCNHKt8ruAkg4Jl5","tlshash":"9c91082904104ae9994072a1e600bc2527bcf96371e091cff95d5f4e238fecb10a413f","size":4250,"data":"","first_seen":"2025-01-26T10:25:56.182643Z","last_seen":"2025-01-26T10:25:56.182643Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:30Z","timestamp":1737887130,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.25","port":39956,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:30.588000+0000\",\"flow_id\":119988729597696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":39956,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saiseen-co-jp.aesense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":731,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:30.511744+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ca1da3eb223fb087a6f7dca7cadb97e9","sha1":"43f0ee5f2556858ecdc5b49df27272a08a12b975","sha256":"f32320baa5733ebd2020aa0dc1f475d2fd921c1aa6b9efa69a4ee55c2a6b5212","sha512":"3c0ad6cde99a1c4da97b162a9fae5e9e9a2de32ba136f5d6cd0c725bdf1a2be47fde24e5638a86c3056d4b35d4a626e97f05e9ecfe36768c8b910742431bc4b6","ssdeep":"","tlshash":"41f0a2b536710346d632e757e1d61161bd69d013c081f57271ff90100bdca665691b9a","size":622,"data":"","first_seen":"2023-05-15T01:28:55Z","last_seen":"2025-01-29T03:12:11.294083Z","times_seen":1978,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:30Z","timestamp":1737887130,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.25","port":39956,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:30.588000+0000\",\"flow_id\":119988729597696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":39956,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saiseen-co-jp.aesense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":731,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:30.511744+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a9538b896938bc06d7dce4746ecc653d","sha1":"c5dad30e3fa5a26352df36d690fdfad128c36930","sha256":"77e6c848812f206a288ed6cf1b03b29a0b80a38e809eb90819544bdb88737c47","sha512":"fb6435f30b5d223702a4b5fc23e6e74545b61c7d78d2117b396868e3a3ca97b76ecce93dd97760767b17188750b2dd9eada658730e5c92658cd81b45897898f3","ssdeep":"","tlshash":"b301468a1c684735c9ab43125c2b3fd2a49d243022cb3544e95e58d930bffde915e1eb","size":842,"data":"","first_seen":"2025-01-26T10:25:56.186297Z","last_seen":"2025-01-26T10:25:56.186297Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33839cb72649c81ab58b763c95b4a163","sha1":"0c9b62881e660fded013cee58439ae287690065a","sha256":"cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76","sha512":"c72011d6bc068615b6a9e4f659c5aeb6c04a889bd4163e4a351d7659c48e715a94002e35637c3e1cb6a9b269271fb43d6b77495000ab1143ee401e2bb68b7357","ssdeep":"","tlshash":"2e218b6e4c50822f6eb63e9e296fba04fb235421e049e1d0c54cf865397df93892d9f4","size":1302,"data":"","first_seen":"2023-04-05T04:36:39Z","last_seen":"2025-03-02T05:25:03.460086Z","times_seen":67768,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c9acb17da4a8cbcb437894775647c54","sha1":"ed3a1fd32ac86ae3512f743365c9971262a3c03c","sha256":"cee99fc550644a458d3b8a6b255765206b78b6995ec54fd99cab9e97b89a2077","sha512":"24c0ac1c12a4e6a8ae04c412df7cbc659b5a37e5746a8d7f51118026ce93ca40a575684388648d93baa3343254d209b09dfa04044917332e3fdd28b31e08a88f","ssdeep":"1536:TEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:2hNIKordHd4AIPu32TXz3fDas","tlshash":"8fe35d9d73a1742253a394f4607f018fb23af965e80888b4b198d8e47cb4da94277f7d","size":147195,"data":"","first_seen":"2025-01-22T21:47:30.18692Z","last_seen":"2025-01-29T14:05:10.24955Z","times_seen":355,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"978e89b89f929ebbd0a746295eafbcbe","sha1":"6b92ab60432c1e5a8aebc60ebc94f1f24c28cea6","sha256":"848eaac812a5c6ef9f75fc33f2bfbb7169bfea60bc4d4a28a7e77d1737ca42ac","sha512":"c7b6c342a6cc4121c889e38dc07ec85f7b3b1ff7811c0babb5f5abaf39a984424751eb1a7ff400e9bd45f0d49e96be85ff30023dfe9de0b3c0463e1d136e42d1","ssdeep":"96:zQIHrUsXy9Cp1OuKfIqT1M6BXXjgXnB9qPsBJaqJ4uSnx73CUnKVGSrbH:jrUs2nDxQqPJTuIRIESrbH","tlshash":"26c194723145347a4aff0751206f1f14b67ae8533a08b419b028b7e82bebd5744dbb6a","size":5888,"data":"","first_seen":"2024-05-23T11:11:38Z","last_seen":"2026-03-23T00:52:59.161451Z","times_seen":188504,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:30Z","timestamp":1737887130,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.25","port":39956,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:30.588000+0000\",\"flow_id\":119988729597696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":39956,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saiseen-co-jp.aesense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":731,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:30.511744+0000\"}}"}],"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-26T10:25:30.441Z","timestamp":1737887130441,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d HTTP/1.1\r\nHost: ww16.saiseen-co-jp.aesense.alcuth.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sun, 26 Jan 2025 10:25:30 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ntransfer-encoding: chunked\r\nvary: Accept-Encoding\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_tfhl9iWjKsCoT5SKzKNYtnvSNSI6ZSrpisYJpRz4JYEddLD1eUNYyqh0GxlnNMGcqerlCnUD55qrktdUmm/bwA==\r\nlast-modified: Sun, 26 Jan 2025 10:25:30 GMT\r\nx-cache-miss-from: parking-759f8f6b6-zjxkv\r\nserver: Parking/1.0\r\ncontent-encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8389,"size_decoded":25592,"mime_type":"","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10668)","md5":"300de7b14758f3cef7f1d44e433cdeab","sha1":"b6f91ec32fe34c6bbf06d2dbfa7b441ab0f113e8","sha256":"80e38d5c91aa017de8f64b665837ef4fb28a026a9a5dc2c521e4558a7414170c","sha512":"811ede27a589492d0a42afe840f8b07759205a761464e25936d9159881f81af26f58b46c6cae658b77c0401a830033a74701fe5e6cb4863cad73a5039111ca37","ssdeep":"768:5iqxTN1L6Cjf4YiD6ecpuA9ul5EBX0KGBTuIOESPO:5rfReGjulyEKGluBESPO","tlshash":"1bb2f8322a882575b2b7865db191bb11b734d813d51269a9f45cf3b8cfcbd8702d2f0a","first_seen":"2025-01-26T10:25:56.15209Z","last_seen":"2025-01-26T10:25:56.15209Z","times_seen":1,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":0,"dns":0,"connect":24,"send":0,"wait":0,"receive":0,"ssl":29},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:30Z","timestamp":1737887130,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.25","port":39956,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:30.588000+0000\",\"flow_id\":119988729597696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.25\",\"src_port\":39956,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saiseen-co-jp.aesense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":731,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:30.511744+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"img.sedoparking.com/templates/bg/multi-arrows.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:30.885Z","timestamp":1737887130885,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /templates/bg/multi-arrows.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 26 Jan 2025 10:25:30 GMT\r\nContent-Type: image/png\r\nContent-Length: 2531\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: max-age=604800\r\nExpires: Sun, 02 Feb 2025 10:25:30 GMT\r\nX-CFHash: \"53f75042704429bbc0e7b7f6e85bcb1d\"\r\nX-CFF: B\r\nLast-Modified: Mon, 19 Dec 2022 10:23:48 GMT\r\nX-CF3: H\r\nCF4Age: 0\r\nx-cf-tsc: 1732120852\r\nCF4ttl: 31536000.000\r\nX-CF2: H\r\nServer: CFS 1124\r\nX-CF-ReqID: 2e77207ed673598715cfde436a0c530d\r\nX-CF1: 11696:fD.arn1:cf:nom:cacheN.arn1-01:H\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2531,"size_decoded":2531,"mime_type":"image/png","magic":"PNG image data, 150 x 699, 8-bit colormap, non-interlaced","md5":"53f75042704429bbc0e7b7f6e85bcb1d","sha1":"f5f38bd2b62556831782ee4c28456c33323926ce","sha256":"bdb38096f60e6d8afd62265287852a6c82a818ec048e0288a88f2b96b4b8f475","sha512":"11df32197ab23677a64bf5d872f35664a895c2cdd73039fbcc2725252ee3ac8116f98d9086de567046c7fa14e8a7033135c5e22ad1ba3fd7147c3a95a302c13e","ssdeep":"","tlshash":"9c51c7d96e5d15e4caedba312a633ab45d5f28440392f0b2aef18c560c34645823ed67","first_seen":"2023-04-25T19:56:26Z","last_seen":"2026-04-03T14:38:31.047819Z","times_seen":9329,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":4,"dns":1,"connect":7,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:30.882Z","timestamp":1737887130882,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Type: text/javascript; charset=UTF-8\r\nCross-Origin-Resource-Policy: cross-origin\r\nCross-Origin-Opener-Policy: same-origin; report-to=\"ads-afs-ui\"\r\nReport-To: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\nDate: Sun, 26 Jan 2025 10:25:30 GMT\r\nExpires: Sun, 26 Jan 2025 10:25:30 GMT\r\nCache-Control: private, max-age=3600\r\nETag: \"9690489286442617190\"\r\nX-Content-Type-Options: nosniff\r\nLink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\nContent-Encoding: gzip\r\nTransfer-Encoding: chunked\r\nServer: sffe\r\nX-XSS-Protection: 0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53069,"size_decoded":147188,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1869)","md5":"5d61f84a2a6d315848cdbaf3b3e26b6c","sha1":"86207855047355df336061ac50db661724e986e8","sha256":"df7d90bc723e5951ba83b06234a1d009f589d9461d7f9dd30feb003931670130","sha512":"8525d932425a183ad537dc9061c1460de8a82d0801d8519722c4e469ae998caa8967f37ca1da6dbd4cbcb530997914d132e6180cbce27797ffb6aa6a5f74e068","ssdeep":"1536:qEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:9hNIKordHd4AIPu32TXz3fDas","tlshash":"dee35d9d73a1742253a394f4607f018fb13af965e80888b4b198d8e47cb4da94277fbd","first_seen":"2025-01-22T23:48:04.039949Z","last_seen":"2025-01-29T14:03:38.223297Z","times_seen":360,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":1,"dns":0,"connect":8,"send":0,"wait":28,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saiseen-co-jp.aesense.alcuth.top/search/tsc.php?ses=ogc4UQyQrG_UR1DzCxztFVsTVNv1fCJQiqRr7f06ESWSv8ng-crh_i_-VfRRguEZ7LIIW0ZK6DanR7u-qXPx9g8u42VSG4G8NqGnr8gAMsxQYVw8DCKUJ_g71pojlfssz658iGb6jI3ldl89Lin0m6n6hnMcXGnfM6vQeVscHx2dy8o4SbseU0GLW1Z9gtdcCrAIKPu5e_jP71Ntj4kzGK2VN8GAkdwBvK9sgwkWxaACDq2vEDhxmkzvrX3fphtKpktA2e94THTWiz2jp2oczTDchOi-ZUkj9pWJpchu9EAX_v20ECMOxh38CEvFVvCooDDrEjiY0fgoU55aHIuE4HisIKuLql0J5lspXlokoktmGzSMf5kapO4LZ-WZQ\u0026cv=2","fqdn":"ww16.saiseen-co-jp.aesense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.008Z","timestamp":1737887131008,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /search/tsc.php?ses=ogc4UQyQrG_UR1DzCxztFVsTVNv1fCJQiqRr7f06ESWSv8ng-crh_i_-VfRRguEZ7LIIW0ZK6DanR7u-qXPx9g8u42VSG4G8NqGnr8gAMsxQYVw8DCKUJ_g71pojlfssz658iGb6jI3ldl89Lin0m6n6hnMcXGnfM6vQeVscHx2dy8o4SbseU0GLW1Z9gtdcCrAIKPu5e_jP71Ntj4kzGK2VN8GAkdwBvK9sgwkWxaACDq2vEDhxmkzvrX3fphtKpktA2e94THTWiz2jp2oczTDchOi-ZUkj9pWJpchu9EAX_v20ECMOxh38CEvFVvCooDDrEjiY0fgoU55aHIuE4HisIKuLql0J5lspXlokoktmGzSMf5kapO4LZ-WZQ\u0026cv=2 HTTP/1.1\r\nHost: ww16.saiseen-co-jp.aesense.alcuth.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sun, 26 Jan 2025 10:25:31 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nx-cache-miss-from: parking-759f8f6b6-ml6gx\r\nserver: Parking/1.0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"img.sedoparking.com/templates/logos/sedo_logo.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.041Z","timestamp":1737887131041,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /templates/logos/sedo_logo.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 26 Jan 2025 10:25:31 GMT\r\nContent-Type: image/png\r\nContent-Length: 15086\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: max-age=604800\r\nExpires: Sun, 02 Feb 2025 10:25:31 GMT\r\nX-CFHash: \"def00c11b1596db4efee6a9fbe64fc27\"\r\nX-CFF: B\r\nLast-Modified: Mon, 11 Jan 2021 07:44:34 GMT\r\nX-CF3: H\r\nCF4Age: 0\r\nx-cf-tsc: 1729867994\r\nCF4ttl: 31536000.000\r\nX-CF2: H\r\nServer: CFS 1124\r\nX-CF-ReqID: 617429d3897a12757c93ea26f48f268f\r\nX-CF1: 11696:fD.arn1:cf:nom:cacheN.arn1-01:H\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15086,"size_decoded":15086,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"def00c11b1596db4efee6a9fbe64fc27","sha1":"bd298981e6d8d7e4ffa18abcf687041f4246672d","sha256":"95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4","sha512":"c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f","ssdeep":"192:jiHSINqv0tJ30DezSfPAXTZwC3D2N2xp1Fd/ar/+zi3LHZNwkQH0iWpXDt3TN8rB:jzAnP9j","tlshash":"31623e0bfd4bc358ce50b23ae67c4bfb6361d8c1b090a7e257d9d51aafa7b014c9a011","first_seen":"2023-04-14T07:11:21Z","last_seen":"2026-04-03T22:27:47.216141Z","times_seen":219721,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:30.994Z","timestamp":1737887130994,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/ads/i/iframe.html HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/html\r\ncontent-security-policy: script-src 'nonce-E6nQhAHZK8SRSOVMOdf5Tg' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ncontent-length: 729\r\ndate: Sun, 26 Jan 2025 10:25:31 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, must-revalidate\r\nlast-modified: Tue, 17 Sep 2024 06:00:00 GMT\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":729,"size_decoded":1560,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1559)","md5":"73faccdacfb540fee6c17dc0b21758a2","sha1":"bd2c7b24de2b30d7e07abfef07e271fa0c20fd32","sha256":"53bfdf81e617b5cd7ebcfeb939ced80a244a5da9549666788bf737d1db439000","sha512":"dca2b0d7e9f6d788928f95edb5fe9b62db16db3531bf16f3270f03fa060b6d485e62b0863039752997a545166825621527233c02b3e77612ec488ed6a86ecd93","ssdeep":"","tlshash":"c031b1ae4c50811e2db23d9d2d5bb604fa135424e449d5c0c59cf9693979fc78c2a9f4","first_seen":"2025-01-26T10:25:56.17031Z","last_seen":"2025-01-26T10:25:56.17031Z","times_seen":1,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":90,"dns":0,"connect":20,"send":0,"wait":32,"receive":1,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.005Z","timestamp":1737887131005,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-disposition: inline\r\ndate: Sun, 26 Jan 2025 10:25:31 GMT\r\nexpires: Sun, 26 Jan 2025 10:25:31 GMT\r\ncache-control: private, max-age=3600\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-w-AsReBV8fF__gbViSWhqA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ncontent-encoding: br\r\nserver: gws\r\ncontent-length: 3500\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3500,"size_decoded":21598,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (20808)","md5":"45bc889bedd7fb82a570b800bd6dcb1f","sha1":"5d506b02fb2ed68542b7867fde93d3b493719839","sha256":"fed65af451c0f81761a59e09ef1aa6760b1c618ff1db79e2a777e73cee60a1ae","sha512":"1f6e7f11ca3a6f9464a20bfc45b828d01894dab5eb38808e091ee44106633347b36f6ba78766486c47df3daa89e0fc5a468c76ed0225d8ab9502e3b1dd885b15","ssdeep":"192:GE12iMpgbx0BAhKVg7oMbM4a7MLtMVM/HVM9y9umUQKk6:Gni0sKqcMVH4y9sQKk6","tlshash":"00a2343760a1272e0907ec54172a6f6dc295d43ac46b35e948a31f15c7f7f838be628e","first_seen":"2025-01-26T10:25:56.173211Z","last_seen":"2025-01-26T10:25:56.173211Z","times_seen":1,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":97,"dns":0,"connect":20,"send":0,"wait":93,"receive":1,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23000000","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.567Z","timestamp":1737887131567,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:37:05 GMT","end":"Mon, 31 Mar 2025 08:37:04 GMT"},"fingerprint":{"sha1":"D2:15:13:77:74:22:58:D3:06:17:16:14:8F:CF:FF:DF:94:2F:1E:20","sha256":"CD:CD:1C:2E:D7:A6:01:5B:E4:18:D1:4E:08:89:C5:F1:3F:78:26:0A:39:F5:0B:2E:2A:8B:13:00:8A:07:68:BF"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23000000 HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 173\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 26 Jan 2025 07:04:31 GMT\r\nexpires: Mon, 27 Jan 2025 06:04:31 GMT\r\ncache-control: public, max-age=82800\r\nage: 12060\r\nlast-modified: Thu, 02 Nov 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":173,"size_decoded":200,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a12df2436667e359ab4623080d0a6fed","sha1":"e62f87b1d55545c0836af1cd8d849b41d9ed5f4f","sha256":"245be54e1421d7f071cc82866858258d5be20e08b1ffaeb4d7f59106d1805fd6","sha512":"e73926bbc4f11c6245517744c42e80635951f4ec2352eeebdb07a3a1e808f1cd08db838c54596728f4c1346fb4b6cde76851662bbe16cb6f409f7b274268e152","ssdeep":"","tlshash":"d8d02292c2186d28c51e82f0c37c712a00ea70a2238c00ccfa81a300720c8abb861668","first_seen":"2023-05-09T10:40:20Z","last_seen":"2026-03-01T19:00:52.571164Z","times_seen":68919,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":62,"dns":0,"connect":7,"send":0,"wait":8,"receive":0,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23000000","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.570Z","timestamp":1737887131570,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:37:05 GMT","end":"Mon, 31 Mar 2025 08:37:04 GMT"},"fingerprint":{"sha1":"D2:15:13:77:74:22:58:D3:06:17:16:14:8F:CF:FF:DF:94:2F:1E:20","sha256":"CD:CD:1C:2E:D7:A6:01:5B:E4:18:D1:4E:08:89:C5:F1:3F:78:26:0A:39:F5:0B:2E:2A:8B:13:00:8A:07:68:BF"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23000000 HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 270\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 26 Jan 2025 04:38:00 GMT\r\nexpires: Mon, 27 Jan 2025 03:38:00 GMT\r\ncache-control: public, max-age=82800\r\nage: 20851\r\nlast-modified: Thu, 20 Jul 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":270,"size_decoded":391,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"78d29b2362fcb5dee6fe8111c4f1c53b","sha1":"5019bfbd17efb89c68be43d489ebf98d7d707119","sha256":"008270530fe4a3f4bcbec41da05d40361aca8edf374a464c70d5cacfb8e06fd4","sha512":"af58e57cff86442af1f0b258276a751c0d0499b4b0d1379e8405069af078bb31bb7522cd63f3b0b0f6d02c1dd883189d3511866fe303fba302aa76982cd54a18","ssdeep":"","tlshash":"9fe061fb81446d048a4543b0ed09b7a846eff076539d91b7c1e0e6fcb0448da6cd2745","first_seen":"2023-05-08T11:49:16Z","last_seen":"2026-03-01T19:00:52.58765Z","times_seen":11625,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":63,"dns":2,"connect":9,"send":0,"wait":8,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=iwa5l74p6d98\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026psid=7154764821\u0026pbt=bs\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=21%7C0%7C430%7C76%7C39\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:33.049Z","timestamp":1737887133049,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=iwa5l74p6d98\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026psid=7154764821\u0026pbt=bs\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=21%7C0%7C430%7C76%7C39\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-O_iU3QpSFHPN39hdE6BSww' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:33 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":43,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=urkidn6znuf7\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026psid=7154764821\u0026pbt=bv\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=21%7C0%7C430%7C76%7C39\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:33.057Z","timestamp":1737887133057,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=urkidn6znuf7\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026psid=7154764821\u0026pbt=bv\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=21%7C0%7C430%7C76%7C39\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-mhq1lipRHmU_4L9Qb1x7vQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:33 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=pxpuvmp3tjyl\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026pbt=bs\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=6%7C0%7C445%7C76%7C39\u0026lle=0\u0026ifv=0\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:33.055Z","timestamp":1737887133055,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=pxpuvmp3tjyl\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026pbt=bs\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=6%7C0%7C445%7C76%7C39\u0026lle=0\u0026ifv=0\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-V5hMJr_qOVttoAFPWXq0Dw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:33 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":66,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=grba3a67eidw\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026pbt=bv\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=6%7C0%7C445%7C76%7C39\u0026lle=0\u0026ifv=0\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saiseen-co-jp.aesense.alcuth.top/jp.php/?sub1=20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:33.062Z","timestamp":1737887133062,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=grba3a67eidw\u0026aqid=mw2WZ638CP6yiM0PyOrN4QY\u0026pbt=bv\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=718025142\u0026csala=6%7C0%7C445%7C76%7C39\u0026lle=0\u0026ifv=0\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saiseen-co-jp.aesense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-y2fw7c7NWM-R3W1SAdCmiQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:33 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T22:31:02.952373Z","times_seen":13306102,"resource_available":true,"data":null}},"time_used":60,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":60,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMzAmdGNpZD13dzE2LnNhaXNlZW4tY28tanAuYWVzZW5zZS5hbGN1dGgudG9wNjc5NjBkOWE4OWU5NTkuNjY4NzExOTUmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107\u0026format=r6%7Cs\u0026nocache=5711737887130982\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saiseen-co-jp.aesense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=2\u0026u_his=2\u0026u_tz=0\u0026dt=1737887130993\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=718025142\u0026rurl=http%3A%2F%2Fww16.saiseen-co-jp.aesense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2125-12e0-adbc-a8d3e1b1d38d","date":"2025-01-26T10:25:31.416Z","timestamp":1737887131416,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /adsense/domains/caf.js HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:31 GMT\r\nexpires: Sun, 26 Jan 2025 10:25:31 GMT\r\ncache-control: private, max-age=3600\r\netag: \"2683996412882585667\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":147195,"size_decoded":147195,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1869)","md5":"0c9acb17da4a8cbcb437894775647c54","sha1":"ed3a1fd32ac86ae3512f743365c9971262a3c03c","sha256":"cee99fc550644a458d3b8a6b255765206b78b6995ec54fd99cab9e97b89a2077","sha512":"24c0ac1c12a4e6a8ae04c412df7cbc659b5a37e5746a8d7f51118026ce93ca40a575684388648d93baa3343254d209b09dfa04044917332e3fdd28b31e08a88f","ssdeep":"1536:TEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:2hNIKordHd4AIPu32TXz3fDas","tlshash":"8fe35d9d73a1742253a394f4607f018fb23af965e80888b4b198d8e47cb4da94277f7d","first_seen":"2025-01-22T21:47:30.18692Z","last_seen":"2025-01-29T14:05:10.24955Z","times_seen":355,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":33,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}