{"report_id":"1cd6afc1-767d-4166-8f67-96bd3f095d45","version":6,"status":"done","tags":[],"date":"2025-08-10T08:33:16Z","url":{"schema":"http","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"title":"Factory video"},"submit":{"url":{"schema":"http","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":0,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-14T08:33:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T08:32:53Z","timestamp":1754814773,"ip_dst":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.15","port":47786,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Suspicious Domain (*.icu) in TLS SNI","source":"{\"timestamp\":\"2025-08-10T08:32:53.950449+0000\",\"flow_id\":708245898773543,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.15\",\"src_port\":47786,\"dest_ip\":\"157.173.125.209\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2026889,\"rev\":4,\"signature\":\"ET INFO Suspicious Domain (*.icu) in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2019_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"ggwtch.icu\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3520,\"start\":\"2025-08-10T08:32:53.902183+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ggwtch.icu","ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2025-07-25","domain_rank":0,"first_seen":"2025-08-10T08:33:16.588005Z","last_seen":"2025-08-10T08:33:16.588005Z","alert_count":0,"request_count":6,"received_data":57297,"sent_data":2820,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T08:32:53Z","timestamp":1754814773,"ip_dst":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.15","port":47786,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Suspicious Domain (*.icu) in TLS SNI","source":"{\"timestamp\":\"2025-08-10T08:32:53.950449+0000\",\"flow_id\":708245898773543,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.15\",\"src_port\":47786,\"dest_ip\":\"157.173.125.209\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2026889,\"rev\":4,\"signature\":\"ET INFO Suspicious Domain (*.icu) in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2019_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"ggwtch.icu\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3520,\"start\":\"2025-08-10T08:32:53.902183+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"659190c0d4abcce709d2d16cbb5e4060","sha1":"3790d23360c5c9907742b0106d3db78b4bc43757","sha256":"d8054a96557223a7fe3730f501f9bea34427ec70de2452f4e926ebe47a9a32ed","sha512":"9a4574092debfa68b45309bd60dea6df100059601ce5c41e139b27ed9764b18173effb8d8bc02cd23956cdc6c83d65fbd39100880f17d988a06348b88c346ef3","ssdeep":"192:Qor+xIdkneDZb5CM/hd6rejpbpyM/h3vAISi:QorQIKeDZb5R/mCjpbph/CIT","tlshash":"17e100097abb017502fba46eabd76298b53450173180dec47f4dc7484faafa0b5a2fd4","size":7343,"data":"","first_seen":"2024-12-26T11:18:33.896792Z","last_seen":"2025-09-15T18:43:15.072316Z","times_seen":145,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ggwtch.icu/favicon.ico","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ggwtch.icu/?video=6495441787","date":"2025-08-10T08:33:09.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ggwtch.icu/?video=6495441787\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:33:09 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1753\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":5478,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"49dcfefac7b1685253574d29eb7dcf23","sha1":"5b65c1338fed9b022f73a632617dd7f26ccbf1c4","sha256":"cf4d3b52b668e7047cea751734b6bcf134e75d33f95c6156766338702f95f1dd","sha512":"846a9b394d7387501d39257e49facdafb95ae4df2f5582eaae06ae6b1d033b39ad63b3d48ce578d7ea11e807e1eb3886c9503ae502254dc3f2bb43973fef36c9","ssdeep":"96:NEb6YUwe/3eauSheUomFm1xHornFMSOgaYrkbm4ffliLMFMvQgN+smhFZ9fxTVWj:NAhe/3gSheZmFqdorn2SOgaYrkbm4ffq","tlshash":"60b125869bfb0000b123d1d87be25b4226b18543e456cda93bdd6119ef8d29ca9837ac","first_seen":"2025-08-08T22:27:41.191097Z","last_seen":"2025-09-15T18:43:15.070779Z","times_seen":30,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-10T08:32:53.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /?video=6495441787 HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:32:53 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 3506\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]}],"data":{"size":13116,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"847e59f7f3d1047cf0fa2af29dd72bd1","sha1":"322a4c05486f355976e084cc849375d49039d6e5","sha256":"12d3ee4992b1b7cf1a228b8c7277930e1f7c5bac0d4c9b788c338d01e1d4f01a","sha512":"60d3f158ca53b682ff7822845769974955889ff081d517adb03ee1d0af82a993e911f3e9d01f6133981898858492705697c9dbaa8d3f4ec76df657035096b587","ssdeep":"384:akFptrgFLFF//orQIKeDZb5R/mCjpbph/CI4:akFpVgFLF4Zrpc","tlshash":"094295456bfb002161b7e06d7be76349753080137081ced93f9d92489f9dba8e9a2fd8","first_seen":"2025-08-08T22:27:41.195032Z","last_seen":"2025-09-15T18:43:15.071639Z","times_seen":28,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":55,"dns":1,"connect":21,"send":0,"wait":23,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-10T08:33:01.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /?video=6495441787 HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:33:01 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 3506\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":13116,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"847e59f7f3d1047cf0fa2af29dd72bd1","sha1":"322a4c05486f355976e084cc849375d49039d6e5","sha256":"12d3ee4992b1b7cf1a228b8c7277930e1f7c5bac0d4c9b788c338d01e1d4f01a","sha512":"60d3f158ca53b682ff7822845769974955889ff081d517adb03ee1d0af82a993e911f3e9d01f6133981898858492705697c9dbaa8d3f4ec76df657035096b587","ssdeep":"384:akFptrgFLFF//orQIKeDZb5R/mCjpbph/CI4:akFpVgFLF4Zrpc","tlshash":"094295456bfb002161b7e06d7be76349753080137081ced93f9d92489f9dba8e9a2fd8","first_seen":"2025-08-08T22:27:41.195032Z","last_seen":"2025-09-15T18:43:15.071639Z","times_seen":28,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":75,"dns":1,"connect":37,"send":0,"wait":44,"receive":1,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ggwtch.icu/favicon.ico","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ggwtch.icu/?video=6495441787","date":"2025-08-10T08:32:54.172Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ggwtch.icu/?video=6495441787\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:32:54 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1753\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":5478,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"49dcfefac7b1685253574d29eb7dcf23","sha1":"5b65c1338fed9b022f73a632617dd7f26ccbf1c4","sha256":"cf4d3b52b668e7047cea751734b6bcf134e75d33f95c6156766338702f95f1dd","sha512":"846a9b394d7387501d39257e49facdafb95ae4df2f5582eaae06ae6b1d033b39ad63b3d48ce578d7ea11e807e1eb3886c9503ae502254dc3f2bb43973fef36c9","ssdeep":"96:NEb6YUwe/3eauSheUomFm1xHornFMSOgaYrkbm4ffliLMFMvQgN+smhFZ9fxTVWj:NAhe/3gSheZmFqdorn2SOgaYrkbm4ffq","tlshash":"60b125869bfb0000b123d1d87be25b4226b18543e456cda93bdd6119ef8d29ca9837ac","first_seen":"2025-08-08T22:27:41.191097Z","last_seen":"2025-09-15T18:43:15.070779Z","times_seen":30,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ggwtch.icu/favicon.ico","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ggwtch.icu/?video=6495441787","date":"2025-08-10T08:33:01.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ggwtch.icu/?video=6495441787\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:33:01 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1753\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5478,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"49dcfefac7b1685253574d29eb7dcf23","sha1":"5b65c1338fed9b022f73a632617dd7f26ccbf1c4","sha256":"cf4d3b52b668e7047cea751734b6bcf134e75d33f95c6156766338702f95f1dd","sha512":"846a9b394d7387501d39257e49facdafb95ae4df2f5582eaae06ae6b1d033b39ad63b3d48ce578d7ea11e807e1eb3886c9503ae502254dc3f2bb43973fef36c9","ssdeep":"96:NEb6YUwe/3eauSheUomFm1xHornFMSOgaYrkbm4ffliLMFMvQgN+smhFZ9fxTVWj:NAhe/3gSheZmFqdorn2SOgaYrkbm4ffq","tlshash":"60b125869bfb0000b123d1d87be25b4226b18543e456cda93bdd6119ef8d29ca9837ac","first_seen":"2025-08-08T22:27:41.191097Z","last_seen":"2025-09-15T18:43:15.070779Z","times_seen":30,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ggwtch.icu/?video=6495441787","fqdn":"ggwtch.icu","domain":"ggwtch.icu","tld":"icu"},"ip":{"addr":"157.173.125.209","port":443,"asn":51167,"as":"Contabo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-10T08:33:09.376Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ggwtch.icu","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 23:04:47 GMT","end":"Thu, 23 Oct 2025 23:04:46 GMT"},"fingerprint":{"sha1":"73:E1:9B:5C:46:1A:E6:3F:96:BC:F3:2B:05:CF:79:D6:7B:B2:99:5A","sha256":"D8:DF:F4:61:41:FC:B1:0D:B1:DC:7D:27:99:63:C1:C5:BD:45:AE:29:3B:10:F7:A0:E5:89:DD:F0:E2:BD:11:53"}}},"request":{"raw":"GET /?video=6495441787 HTTP/1.1\r\nHost: ggwtch.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 08:33:09 GMT\r\nServer: Apache/2.4.52 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 3506\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.52","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Google AdSense","description":"Google AdSense is a program run by Google through which website publishers serve advertisements that are targeted to the site content and audience.","website":"https://www.google.com/adsense/start/","common_platform_enumeration":"","icon":"Google AdSense.svg","categories":["Advertising"]}],"data":{"size":13116,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"847e59f7f3d1047cf0fa2af29dd72bd1","sha1":"322a4c05486f355976e084cc849375d49039d6e5","sha256":"12d3ee4992b1b7cf1a228b8c7277930e1f7c5bac0d4c9b788c338d01e1d4f01a","sha512":"60d3f158ca53b682ff7822845769974955889ff081d517adb03ee1d0af82a993e911f3e9d01f6133981898858492705697c9dbaa8d3f4ec76df657035096b587","ssdeep":"384:akFptrgFLFF//orQIKeDZb5R/mCjpbph/CI4:akFpVgFLF4Zrpc","tlshash":"094295456bfb002161b7e06d7be76349753080137081ced93f9d92489f9dba8e9a2fd8","first_seen":"2025-08-08T22:27:41.195032Z","last_seen":"2025-09-15T18:43:15.071639Z","times_seen":28,"resource_available":false,"data":null}},"time_used":157,"timings":{"blocked":59,"dns":1,"connect":23,"send":0,"wait":36,"receive":1,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}