{"report_id":"20bcdffb-4949-41da-a160-5974c026f6f8","version":6,"status":"done","tags":[],"date":"2024-07-03T03:24:32Z","url":{"schema":"http","addr":"sbacertify.us","fqdn":"sbacertify.us","domain":"sbacertify.us","tld":"us"},"ip":{"addr":"15.197.148.33","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"sbacertify.us/lander","fqdn":"sbacertify.us","domain":"sbacertify.us","tld":"us"},"title":"sbacertify.us/lander"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T11:30:06Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"btloader.com","ip":{"addr":"104.22.75.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-10-06","domain_rank":169057,"first_seen":"2020-10-22 22:38:52","last_seen":"2024-07-02 09:48:42","alert_count":0,"request_count":1,"received_data":19530,"sent_data":417,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ad-delivery.net","ip":{"addr":"172.67.69.19","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2017-05-03","domain_rank":1341,"first_seen":"2017-06-22 07:33:30","last_seen":"2024-07-02 08:38:52","alert_count":0,"request_count":2,"received_data":2378,"sent_data":859,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.btloader.com","ip":{"addr":"130.211.23.194","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2020-10-06","domain_rank":1320,"first_seen":"2020-10-14 17:25:59","last_seen":"2024-07-01 18:22:18","alert_count":0,"request_count":1,"received_data":200,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10 13:11:19","last_seen":"2024-06-27 18:13:48","alert_count":0,"request_count":1,"received_data":191164,"sent_data":427,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-01 18:12:04","alert_count":0,"request_count":5,"received_data":4436,"sent_data":1635,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sbacertify.us","ip":{"addr":"3.33.130.190","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":1540,"sent_data":806,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-07-01 18:16:28","alert_count":0,"request_count":2,"received_data":1400,"sent_data":650,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img1.wsimg.com","ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"domain_registered":"2008-03-17","domain_rank":9893,"first_seen":"2012-06-20 16:42:31","last_seen":"2024-07-02 08:37:50","alert_count":0,"request_count":4,"received_data":180758,"sent_data":1806,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-07-03T03:24:06Z","timestamp":1719977046,"ip_dst":{"addr":"3.33.130.190","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":49808,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"high","alert":"ThreatFox Loki Password Stealer (PWS) botnet C2 traffic (ip:port - confidence level: 75%)","source":"{\"timestamp\":\"2024-07-03T03:24:06.997375+0000\",\"flow_id\":146289880086527,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.17\",\"src_port\":49808,\"dest_ip\":\"3.33.130.190\",\"dest_port\":80,\"proto\":\"TCP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":91249735,\"rev\":1,\"signature\":\"ThreatFox Loki Password Stealer (PWS) botnet C2 traffic (ip:port - confidence level: 75%)\",\"category\":\"A Network Trojan was detected\",\"severity\":1,\"source\":{\"ip\":\"3.33.130.190\",\"port\":80},\"target\":{\"ip\":\"172.18.0.17\",\"port\":49808},\"metadata\":{\"confidence_level\":[\"75\"],\"first_seen\":[\"2024_03_27\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":74,\"bytes_toclient\":0,\"start\":\"2024-07-03T03:24:06.997375+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026gdabp=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccf36f98d9fc0b2f956d04d5eb1026d1","sha1":"bf39e200050ac5834f83d773d0f9d34322925c9d","sha256":"bc469889345341bee29ba77ca6fd1f483717f035ec3c9fe7b2123e7ab6dfff46","sha512":"3c7c8d70c6b0adce9e4040fc84be13caea5da662f15f653890bb65e06e3897de61e5387972432067d8823cb1f9c3dd7a4803538d2cc948f784a202d98c243464","ssdeep":"3072:iGA1V2YNrqHtLzlHGX38XqXGRkCQvmDulhn:ibj2ZpzlHYX6klvmilV","tlshash":"aa047dd9b2b57026579398a0902f464fb236fc15e849c1b8f089d4e5bcb9da84373f78","size":190311,"data":"","first_seen":"2024-06-12T21:31:08Z","last_seen":"2024-08-19T20:10:03.61602Z","times_seen":1280,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"sbacertify.us/lander","fqdn":"sbacertify.us","domain":"sbacertify.us","tld":"us"},"ip":{"addr":"3.33.130.190","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"809ac410eb07d8ed167f7b1d59a7ea02","sha1":"e5d077b3ec57340958cdefd3441670353a01084b","sha256":"d58151b1c512005b1cefb0f75797e4338b39ead82665b187527b57f5e5870136","sha512":"1a21ff94fe4553782716bceab6c2108602b8f04d10d38f78fc1a884363bb8fff977018c0d44540da83b457698b3d95b28c1257290883079dd798f4fcd8b46751","ssdeep":"","tlshash":"588000288080000c882088fb220b32bc322cf0c2a2808e202220200022e08038802080","size":27,"data":"","first_seen":"2024-01-30T00:56:55Z","last_seen":"2025-03-02T04:48:45.506921Z","times_seen":5911,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.38adfcfa.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"cc57c721c0a3dc1788a997977930174b","sha1":"9569a45b6308e3e2d37c96dc5f3322c27df00974","sha256":"b51090c71e0b0f63cd1a9cecf294db582ee8ee5895e0bdf757dd590facd02974","sha512":"f6ffe50f54b7d255c8f1ceb82c9c3fa628af5304071e7fb72b912e77a03abb08ef66669c1988732344af8c757b5ae99716fc03551876bc5b53621843686387fd","ssdeep":"12288:bftdl4/kQYnlQYnoYDUk4f0WTI4WY+MiqFbhSCYpJ:bftdl6kQYnlQYnoA","tlshash":"85d43aca76d1b0b407e291eac43f190fb3799e15e00cc671efbad9da9469449813bf18","size":646545,"data":"","first_seen":"2024-05-20T23:24:50Z","last_seen":"2024-08-19T22:22:13.29427Z","times_seen":2496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btloader.com/tag?o=5097926782615552\u0026upapi=true","fqdn":"btloader.com","domain":"btloader.com","tld":"com"},"ip":{"addr":"104.22.75.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e19c6347cdabd74ac2c2d44a963bc57","sha1":"312ab411365b07e7b25269f1c22f54dd546f4fb3","sha256":"8a0e357439280756a7c553f4687e9f938add5439fcbfcf6f3decc8bd8034b7d4","sha512":"ba9816adc408adb3880e4ba3836b4b592e91f8fdcef74fbb4b95164363fe61dd6b5ece857efa6c6fb352749a0de915d09c6d16873127da791a4beffa48d10c2b","ssdeep":"768:bemBuCcWvZPBJTEXIx6513VC/t1uYGW4hxaHNWy5N81Dju/GeNwXDlBGRBbQKbrP:zuraBaI0fCVcTqKOiiRBbQEP","tlshash":"84431898b350e0b50bdb55b1c13b6112f7b97570390c8068f9a85dc13caa68b96bbff4","size":57339,"data":"","first_seen":"2024-06-25T02:04:04Z","last_seen":"2024-08-19T18:59:56.783286Z","times_seen":324,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:05.890540854Z","timestamp":1719977045890,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"842512E65717B866647D52BC726C962CC42C7E2027C53A2B5B79D7B86D2E50FC\"\r\nLast-Modified: Sun, 30 Jun 2024 13:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=14331\r\nExpires: Wed, 03 Jul 2024 07:22:56 GMT\r\nDate: Wed, 03 Jul 2024 03:24:05 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b7dbdd91e33b4b40b990affe38907ed8","sha1":"8c1dc814dfd071e0c4dcfc0f5429eb7c221d609a","sha256":"842512e65717b866647d52bc726c962cc42c7e2027c53a2b5b79d7b86d2e50fc","sha512":"c44371648182a8cbf14cad2b932cd7350c0daa0aa8916fed5bd63f8acd60dbf55f8cbaff49abaee1d1f77133e8ce0ab7eaa801bafac34fa2240db66c5caa600c","ssdeep":"","tlshash":"34f00e5610f17e81f3e00a642ce8e95c1b15aaae3c999aea1e6001e36882fb44ac4006","first_seen":"2024-06-30T17:56:00Z","last_seen":"2024-08-21T17:30:06.972765Z","times_seen":46537,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:06.337110494Z","timestamp":1719977046337,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BDCA7CE7BB6FEBD6A6AFB56A828CF4422C1A8971524484E8128CAFAD8E6B3367\"\r\nLast-Modified: Tue, 02 Jul 2024 11:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4588\r\nExpires: Wed, 03 Jul 2024 04:40:34 GMT\r\nDate: Wed, 03 Jul 2024 03:24:06 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b8ee6ca153df6819132dd5d8a6ba5c76","sha1":"0ed0f0f631777272bd71ba23719e71695c9d95e1","sha256":"bdca7ce7bb6febd6a6afb56a828cf4422c1a8971524484e8128cafad8e6b3367","sha512":"bfa4d85450474abedf68b006d8f30686ac28d6691b099c832135f7f396dc714182b2a3b00a02a1e4d84801d5b94e405e6aaf5d07b1a71b8a9dd156879e3ce268","ssdeep":"","tlshash":"f3f005963377bf6057b01b20689ce77f0e56ad6e644479b8289053927c00bf1454486c","first_seen":"2024-07-02T15:39:03Z","last_seen":"2024-08-19T18:21:34.826446Z","times_seen":54016,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:06.506192982Z","timestamp":1719977046506,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"AF9FF8700281064D12B8237FA5350720F4C67756063B971777A353AEE916BC59\"\r\nLast-Modified: Tue, 02 Jul 2024 04:21:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=6951\r\nExpires: Wed, 03 Jul 2024 05:19:57 GMT\r\nDate: Wed, 03 Jul 2024 03:24:06 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"29a90370a62299ab28dd09d9bb017b64","sha1":"54e136495ccb82671708b41981735ca7b384c63f","sha256":"af9ff8700281064d12b8237fa5350720f4c67756063b971777a353aee916bc59","sha512":"d7ceeb59741779b8cc935de9dd025213ea69b9b4bbbba5b1a6e29897b59d9ac4cd19577a9c3c0f1e3788033edb0d23852b7b4d09689882e040c30c2839954e5e","ssdeep":"","tlshash":"94f00e9726a6b510bba6402916e8d0603e30af2c384d0cf424f403ef3410faa5b41c68","first_seen":"2024-07-02T14:33:48Z","last_seen":"2024-08-19T18:22:02.922539Z","times_seen":24816,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"sbacertify.us/","fqdn":"sbacertify.us","domain":"sbacertify.us","tld":"us"},"ip":{"addr":"3.33.130.190","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:07.204877927Z","timestamp":1719977047204,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: sbacertify.us\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Wed, 03 Jul 2024 03:24:07 GMT\r\nContent-Type: text/html\r\nContent-Length: 114\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":114,"size_decoded":114,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"e89f75f918dbdcee28604d4e09dd71d7","sha1":"f9d9055e9878723a12063b47d4a1a5f58c3eb1e9","sha256":"6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023","sha512":"8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0","ssdeep":"","tlshash":"eeb092ddbc61e48018e535511ea3b60d146a22ebb9018b4018c00836a96035f8d0aac5","first_seen":"2024-03-15T21:37:10Z","last_seen":"2026-04-30T15:36:16.611011Z","times_seen":129596,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sbacertify.us/lander","fqdn":"sbacertify.us","domain":"sbacertify.us","tld":"us"},"ip":{"addr":"3.33.130.190","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-03T03:24:07.347Z","timestamp":1719977047347,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /lander HTTP/1.1\r\nHost: sbacertify.us\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://sbacertify.us/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Wed, 03 Jul 2024 03:24:07 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-Control: private, max-age=86400\r\nSet-Cookie: traffic_target=gd; Path=/; Max-Age=86400\ncaf_ipaddr=91.90.42.154; Path=/; Max-Age=86400\ncountry=NO; Path=/; Max-Age=86400\ncity=Oslo; Path=/; Max-Age=86400\nlander_type=parkweb; Path=/; Max-Age=86400\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_MnmOhu6H17wH+UvzsvVVjvoX5FllMGKnV+FxnYapeziGnJ3YbhKA4HqW9VwC/0dgMZmRMs8JrGKnn6VV7m28hw\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":620,"size_decoded":620,"mime_type":"","magic":"HTML document, ASCII text, with very long lines (619)","md5":"a65ca73acd47117a7151c42bd9a44349","sha1":"88ccae0dda2e9adbcadf3154a6a4f68d4470fb6f","sha256":"80dfdb5804586fa0cce739ce343816d92cba24c6376414921533016a94ab90e2","sha512":"91e7ebbbbbad4b93e3dd09eb9c7ad633de235c97d03c13d511d88a4518a849f0e4c2b1bd4b4db0f4241aef5f59539310011c92dcfca46bfb0d50090d5481d1fd","ssdeep":"","tlshash":"80f0e7d3dc51c22c0b70d1de7c62fa1cd00af519dd91ed41e495007b58d47e34c59544","first_seen":"2024-05-20T23:24:50Z","last_seen":"2024-08-19T22:22:13.293669Z","times_seen":1149,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":0,"receive":0,"ssl":207},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:07.804123825Z","timestamp":1719977047804,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Wed, 03 Jul 2024 03:24:07 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"3fa2ea89facbc38c584418cb9f647e6a","sha1":"ddf06345be39b32650ca9e2f6809a7687e4f0b7d","sha256":"1515b3a23a086d270f63bafe0648dc0b81010ac025e4a470d08bbfd6d8dfb1c6","sha512":"1fd978fbe07ec37f4f9a2fd813c914349b60f23cda61504dde2474d3bb42d2fc0c9b7cb8e7465588997d251da1bc17a88be81c8724d1831a9770e660d11eafe9","ssdeep":"","tlshash":"0bf0dca43262bf8a9c152a541adcf428182068c795a82a59203e229762a3a5b0649f7b","first_seen":"2024-07-02T00:02:41Z","last_seen":"2024-08-19T18:25:48.692754Z","times_seen":907,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/css/main.11ce2ed9.css","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:07.727Z","timestamp":1719977047727,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/static/css/main.11ce2ed9.css HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: r6ZjEmoyJ8HIAy/pZ+puC1m+QqWIufMrg961SzmjsnhfN5EuuhgvCmthNDFJ18/jGczxAhbXuo+dEgCyzKXhcg==\r\nx-amz-request-id: G1F0R445AK91D6FR\r\nlast-modified: Mon, 20 May 2024 21:18:12 GMT\r\netag: \"026c91fa8650832f37ed2db278bda1a9\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: lhJyFUmArkP9FgsTP3zHSJg83dr6jd.I\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 897\r\ncache-control: max-age=31536000\r\nexpires: Thu, 03 Jul 2025 03:24:07 GMT\r\ndate: Wed, 03 Jul 2024 03:24:07 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":897,"size_decoded":3138,"mime_type":"text/css","magic":"ASCII text, with very long lines (3093)","md5":"026c91fa8650832f37ed2db278bda1a9","sha1":"dcb72f899002d061a6e6c221c5f665b6463da57f","sha256":"82189c363ce1f29b1fa40ea1d8f91679009a4b0b89fe4f1a032dd3e8512d17a1","sha512":"79c1a5bc6fc04ba70b3059e1840a58a5f2c8f23b1746c79bf73e5b0f619640ddf0a7cfb459d9e0dfa18032e366ef10507dbae2f11591f0c883a33f3aad8d0d0a","ssdeep":"","tlshash":"f05189232eb15e3dece6c21cd990ffcc316ab500f027956d991369314eaa7442f63b16","first_seen":"2024-05-20T23:24:50Z","last_seen":"2024-08-19T22:22:13.294851Z","times_seen":2494,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":73,"dns":29,"connect":8,"send":0,"wait":22,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.38adfcfa.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:07.725Z","timestamp":1719977047725,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/static/js/main.38adfcfa.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: 392xFfRxwB8n3ucI+J351heoPxg32dKGVinf73CYPcty+Rd+Bv93fLZENb9NmiUgVB0J5ZCCPvo6c8T6IyN2vw==\r\nx-amz-request-id: RXQNFX571Z4TYMD3\r\nlast-modified: Mon, 20 May 2024 21:18:07 GMT\r\netag: \"cc57c721c0a3dc1788a997977930174b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: p2fAWgjA0I.Fn.oscNhiscgy8J64Ukwu\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 177266\r\ncache-control: max-age=31536000\r\nexpires: Thu, 03 Jul 2025 03:24:07 GMT\r\ndate: Wed, 03 Jul 2024 03:24:07 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":177266,"size_decoded":646545,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65465)","md5":"cc57c721c0a3dc1788a997977930174b","sha1":"9569a45b6308e3e2d37c96dc5f3322c27df00974","sha256":"b51090c71e0b0f63cd1a9cecf294db582ee8ee5895e0bdf757dd590facd02974","sha512":"f6ffe50f54b7d255c8f1ceb82c9c3fa628af5304071e7fb72b912e77a03abb08ef66669c1988732344af8c757b5ae99716fc03551876bc5b53621843686387fd","ssdeep":"12288:bftdl4/kQYnlQYnoYDUk4f0WTI4WY+MiqFbhSCYpJ:bftdl6kQYnlQYnoA","tlshash":"85d43aca76d1b0b407e291eac43f190fb3799e15e00cc671efbad9da9469449813bf18","first_seen":"2024-05-20T23:24:50Z","last_seen":"2024-08-19T22:22:13.29427Z","times_seen":2496,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":70,"dns":30,"connect":7,"send":0,"wait":13,"receive":31,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"btloader.com/tag?o=5097926782615552\u0026upapi=true","fqdn":"btloader.com","domain":"btloader.com","tld":"com"},"ip":{"addr":"104.22.75.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:07.723Z","timestamp":1719977047723,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"btloader.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 12 Jun 2024 07:44:00 GMT","end":"Tue, 10 Sep 2024 07:43:59 GMT"},"fingerprint":{"sha1":"57:4E:02:4C:1F:5B:69:D5:23:7A:5D:7E:3C:A7:E2:85:4A:75:A1:FB","sha256":"1C:21:BC:CE:6A:AA:93:E1:3A:1C:4C:0A:76:9B:AD:33:7B:EF:82:F1:B0:CE:1F:90:E5:E8:2E:47:BF:0E:A3:B6"}}},"request":{"raw":"GET /tag?o=5097926782615552\u0026upapi=true HTTP/1.1\r\nHost: btloader.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 03 Jul 2024 03:24:07 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 19031\r\ncache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300\r\ncontent-encoding: gzip\r\netag: \"c5fc6d9ebe5f7cb354657bc27b5b7d7b\"\r\nlast-modified: Wed, 03 Jul 2024 03:14:24 GMT\r\nvary: Origin, Accept-Encoding\r\nvia: 1.1 google\r\ncf-cache-status: HIT\r\nage: 390\r\naccept-ranges: bytes\r\nserver: cloudflare\r\ncf-ray: 89d3c2c4c8fe9304-CPH\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":19031,"size_decoded":57339,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (57338)","md5":"7e19c6347cdabd74ac2c2d44a963bc57","sha1":"312ab411365b07e7b25269f1c22f54dd546f4fb3","sha256":"8a0e357439280756a7c553f4687e9f938add5439fcbfcf6f3decc8bd8034b7d4","sha512":"ba9816adc408adb3880e4ba3836b4b592e91f8fdcef74fbb4b95164363fe61dd6b5ece857efa6c6fb352749a0de915d09c6d16873127da791a4beffa48d10c2b","ssdeep":"768:bemBuCcWvZPBJTEXIx6513VC/t1uYGW4hxaHNWy5N81Dju/GeNwXDlBGRBbQKbrP:zuraBaI0fCVcTqKOiiRBbQEP","tlshash":"84431898b350e0b50bdb55b1c13b6112f7b97570390c8068f9a85dc13caa68b96bbff4","first_seen":"2024-06-25T02:04:04Z","last_seen":"2024-08-19T18:59:56.783286Z","times_seen":324,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":75,"dns":0,"connect":30,"send":0,"wait":43,"receive":8,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:08.119331845Z","timestamp":1719977048119,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Wed, 03 Jul 2024 03:24:08 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"c9c2d47bcd977c1e6455721ab48676e1","sha1":"41cdb9e6cc6cd35d82795c9078ff2f1408983eb0","sha256":"a4c576435245c1252b33050ae66348dec72215bee08c2e976ae3aed319457d3a","sha512":"092ab64a7b38dc8de90c2382a1382654d3135cc68666d1c91f6df2491339565b73299fa037b61e305e965b5afb5848ee6e9f134f4294f95b6d54d6e3bcc3f77e","ssdeep":"","tlshash":"f2f0d4601f3168035d4b5d10795c4a2c2810e569dc659c7e95ad50f2a9d06bb732873a","first_seen":"2024-07-02T00:03:59Z","last_seen":"2024-08-19T18:25:48.310761Z","times_seen":1050,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/px.js?ch=1\u0026abp=1\u0026gdabp=true","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:08.134Z","timestamp":1719977048134,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/px.js?ch=1\u0026abp=1\u0026gdabp=true HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://sbacertify.us/\r\nOrigin: http://sbacertify.us\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: 7dyMR4+aRgg2lcC1MwGv1AhyBHI09vvoOzs20tUvIixqeuLoFJRBWd/a+Im20FkK6YgbghWVZro=\r\nx-amz-request-id: 4XMWPF8HFGRT3128\r\nlast-modified: Mon, 20 May 2024 21:18:13 GMT\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: JX6heZYudFVdJz78gk0Q1mlS6OjQ02.M\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 20\r\ncache-control: max-age=31536000\r\nexpires: Thu, 03 Jul 2025 03:24:08 GMT\r\ndate: Wed, 03 Jul 2024 03:24:08 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":20,"mime_type":"application/javascript","magic":"gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)","md5":"3970e82605c7d109bb348fc94e9eecc0","sha1":"e03849ea786b9f7b28a35c17949e85a93eb1cff1","sha256":"f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967","sha512":"59c8107c5a9678cd4b6bd1d194ac0987ce0d0542ceeece8430452c238375aa49f0cea3646935315ea994d8ab05e56af112157122be8272185830093fd5922b67","ssdeep":"","tlshash":"a570000000c00c30cc00003000000000000c00000000c3030000000000030c000c003c","first_seen":"2023-05-08T18:56:19Z","last_seen":"2025-03-02T04:48:45.505957Z","times_seen":19661,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/px.js?ch=2\u0026abp=2\u0026gdabp=true","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"104.84.152.241","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:08.194Z","timestamp":1719977048194,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Tue, 19 Sep 2023 21:06:14 GMT","end":"Sun, 20 Oct 2024 21:06:14 GMT"},"fingerprint":{"sha1":"B7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD","sha256":"F0:59:68:08:59:E1:70:FF:7C:87:9A:EC:6B:F0:FE:3F:9A:4E:A4:51:FD:F0:CA:14:49:B8:75:7D:CF:7F:A7:99"}}},"request":{"raw":"GET /parking-lander/px.js?ch=2\u0026abp=2\u0026gdabp=true HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://sbacertify.us/\r\nOrigin: http://sbacertify.us\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: hmZcAKxrZ1+YQnbtsY9neB7G2eGDXHrkZBlCgg/3pEvuVVDQEq7LeHriHtgn3AMvG9RfEqWFuF12jjKB6RSocQ==\r\nx-amz-request-id: GFTP7GXCT95CSTSM\r\nlast-modified: Mon, 20 May 2024 21:18:13 GMT\r\netag: \"d41d8cd98f00b204e9800998ecf8427e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: JX6heZYudFVdJz78gk0Q1mlS6OjQ02.M\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 20\r\ncache-control: max-age=31536000\r\nexpires: Thu, 03 Jul 2025 03:24:08 GMT\r\ndate: Wed, 03 Jul 2024 03:24:08 GMT\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":20,"mime_type":"application/javascript","magic":"gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)","md5":"3970e82605c7d109bb348fc94e9eecc0","sha1":"e03849ea786b9f7b28a35c17949e85a93eb1cff1","sha256":"f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967","sha512":"59c8107c5a9678cd4b6bd1d194ac0987ce0d0542ceeece8430452c238375aa49f0cea3646935315ea994d8ab05e56af112157122be8272185830093fd5922b67","ssdeep":"","tlshash":"a570000000c00c30cc00003000000000000c00000000c3030000000000030c000c003c","first_seen":"2023-05-08T18:56:19Z","last_seen":"2025-03-02T04:48:45.505957Z","times_seen":19661,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ad-delivery.net/px.gif?ch=2","fqdn":"ad-delivery.net","domain":"ad-delivery.net","tld":"net"},"ip":{"addr":"172.67.69.19","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:08.151Z","timestamp":1719977048151,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad-delivery.net","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 17 May 2024 08:39:03 GMT","end":"Thu, 15 Aug 2024 08:39:02 GMT"},"fingerprint":{"sha1":"03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A","sha256":"C2:5E:09:82:12:91:EF:29:43:ED:73:3D:39:41:85:D6:B9:C4:D2:6F:98:DE:82:09:9D:3F:30:FB:2A:B0:28:FC"}}},"request":{"raw":"GET /px.gif?ch=2 HTTP/1.1\r\nHost: ad-delivery.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 03 Jul 2024 03:24:08 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-guploader-uploadid: ABPtcPovIz6nZtqULu9hGQBSVbC6_z8lEyamrIA64gM0CArHcTLURzj7EtelAkaCkOXM4KyL70M\r\nx-goog-generation: 1620242732037093\r\nx-goog-metageneration: 5\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 43\r\nx-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\nexpires: Tue, 02 Jul 2024 18:50:13 GMT\r\ncache-control: public, max-age=86400\r\nlast-modified: Wed, 05 May 2021 19:25:32 GMT\r\netag: \"ad4b0f606e0f8465bc4c4c170b37e1a3\"\r\nage: 31321\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=yxfd7ZF0b4oPkkSdAVwK%2FH%2BJAGQr9sF%2FpfXYtG%2Fw9wT6yOEmGjTmrSWDP3bEXyZP%2FfMEJp5aAt1DR3blZUhxspsAyi6j0rlA2CW5tNFQsbc7QymAvWhJFzGBopGtXb3Obw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89d3c2c75c4e8d91-HEL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":43,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"ad4b0f606e0f8465bc4c4c170b37e1a3","sha1":"50b30fd5f87c85fe5cba2635cb83316ca71250d7","sha256":"cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda","sha512":"ebfe0c0df4bcc167d5cb6ebdd379f9083df62bef63a23818e1c6adf0f64b65467ea58b7cd4d03cf0a1b1a2b07fb7b969bf35f25f1f8538cc65cf3eebdf8a0910","ssdeep":"","tlshash":"15900003fbc08002c2b2e0300b3b0380238ce2200aa8030b80aeb0acecaa3a20c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-04-30T15:34:36.05164Z","times_seen":343345,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":55,"dns":1,"connect":14,"send":0,"wait":22,"receive":1,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ad-delivery.net/px.gif?ch=1\u0026e=0.1348734621513894","fqdn":"ad-delivery.net","domain":"ad-delivery.net","tld":"net"},"ip":{"addr":"172.67.69.19","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:08.180Z","timestamp":1719977048180,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ad-delivery.net","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Fri, 17 May 2024 08:39:03 GMT","end":"Thu, 15 Aug 2024 08:39:02 GMT"},"fingerprint":{"sha1":"03:7B:E9:04:33:1C:DF:29:E9:50:5E:D0:2F:B3:E2:A9:85:F2:3A:6A","sha256":"C2:5E:09:82:12:91:EF:29:43:ED:73:3D:39:41:85:D6:B9:C4:D2:6F:98:DE:82:09:9D:3F:30:FB:2A:B0:28:FC"}}},"request":{"raw":"GET /px.gif?ch=1\u0026e=0.1348734621513894 HTTP/1.1\r\nHost: ad-delivery.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 03 Jul 2024 03:24:08 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-guploader-uploadid: ABPtcPovIz6nZtqULu9hGQBSVbC6_z8lEyamrIA64gM0CArHcTLURzj7EtelAkaCkOXM4KyL70M\r\nx-goog-generation: 1620242732037093\r\nx-goog-metageneration: 5\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 43\r\nx-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\nexpires: Tue, 02 Jul 2024 18:50:13 GMT\r\ncache-control: public, max-age=86400\r\nlast-modified: Wed, 05 May 2021 19:25:32 GMT\r\netag: \"ad4b0f606e0f8465bc4c4c170b37e1a3\"\r\nage: 31321\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=xOdl9A4YL4A%2BS8m%2F9ln3U4GrxmWA6yCp7lfbrcS%2B1NzGyXjhry1BHvWjsBW68M0dqqU1%2BE7%2BHP5Jak%2FsNI3c6DAsOkMw9BAUO2dAu4IugpdZXAFuHArLSnTQgRo63sYAHw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89d3c2c76c5b8d91-HEL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":43,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"ad4b0f606e0f8465bc4c4c170b37e1a3","sha1":"50b30fd5f87c85fe5cba2635cb83316ca71250d7","sha256":"cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda","sha512":"ebfe0c0df4bcc167d5cb6ebdd379f9083df62bef63a23818e1c6adf0f64b65467ea58b7cd4d03cf0a1b1a2b07fb7b969bf35f25f1f8538cc65cf3eebdf8a0910","ssdeep":"","tlshash":"15900003fbc08002c2b2e0300b3b0380238ce2200aa8030b80aeb0acecaa3a20c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-04-30T15:34:36.05164Z","times_seen":343345,"resource_available":true,"data":null}},"time_used":97,"timings":{"blocked":36,"dns":1,"connect":13,"send":0,"wait":20,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:08.306432808Z","timestamp":1719977048306,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"4120FBB0536A3608210C487750025BEA2FF87804924732C527207E00ADD13A34\"\r\nLast-Modified: Sun, 30 Jun 2024 17:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3214\r\nExpires: Wed, 03 Jul 2024 04:17:42 GMT\r\nDate: Wed, 03 Jul 2024 03:24:08 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c4b71305103f33b56dd398fb1f3fa9fe","sha1":"6237cf96ced2a5d69a73769180ae8250221727ea","sha256":"4120fbb0536a3608210c487750025bea2ff87804924732c527207e00add13a34","sha512":"1a2821b6415b7f39e3deeab55019a3f789914fe6dea067b93b8618751fef8d436fc7c9c90377b1dd885399c1f11d6e52724244fcfb92094aa7b6f977d7a1a85f","ssdeep":"","tlshash":"c9f00e5715d2b94172600614acedda0d7bb06f6b390979f0a99843f3aa12f7a418144c","first_seen":"2024-06-30T20:49:07Z","last_seen":"2024-08-19T18:34:12.272282Z","times_seen":48203,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-03T03:24:08.312560678Z","timestamp":1719977048312,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"4120FBB0536A3608210C487750025BEA2FF87804924732C527207E00ADD13A34\"\r\nLast-Modified: Sun, 30 Jun 2024 17:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3214\r\nExpires: Wed, 03 Jul 2024 04:17:42 GMT\r\nDate: Wed, 03 Jul 2024 03:24:08 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"c4b71305103f33b56dd398fb1f3fa9fe","sha1":"6237cf96ced2a5d69a73769180ae8250221727ea","sha256":"4120fbb0536a3608210c487750025bea2ff87804924732c527207e00add13a34","sha512":"1a2821b6415b7f39e3deeab55019a3f789914fe6dea067b93b8618751fef8d436fc7c9c90377b1dd885399c1f11d6e52724244fcfb92094aa7b6f977d7a1a85f","ssdeep":"","tlshash":"c9f00e5715d2b94172600614acedda0d7bb06f6b390979f0a99843f3aa12f7a418144c","first_seen":"2024-06-30T20:49:07Z","last_seen":"2024-08-19T18:34:12.272282Z","times_seen":48203,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.btloader.com/mw/state?bt_env=prod","fqdn":"api.btloader.com","domain":"btloader.com","tld":"com"},"ip":{"addr":"130.211.23.194","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:08.183Z","timestamp":1719977048183,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.btloader.com","organization":""},"issuer":{"commonName":"GTS CA 1D4","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 04 Jun 2024 03:45:50 GMT","end":"Mon, 02 Sep 2024 04:40:04 GMT"},"fingerprint":{"sha1":"20:6D:74:AC:C1:C1:4A:1D:EA:AE:6D:51:9C:75:ED:A3:CE:86:87:16","sha256":"66:80:36:90:6E:FD:05:18:1B:45:D0:03:55:17:8D:08:9D:84:B8:58:85:12:13:30:85:BE:3E:33:56:44:12:6E"}}},"request":{"raw":"GET /mw/state?bt_env=prod HTTP/1.1\r\nHost: api.btloader.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: http://sbacertify.us/\r\nOrigin: http://sbacertify.us\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ndate: Wed, 03 Jul 2024 03:24:08 GMT\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-30T15:35:17.961431Z","times_seen":14429233,"resource_available":true,"data":null}},"time_used":394,"timings":{"blocked":123,"dns":0,"connect":22,"send":0,"wait":142,"receive":0,"ssl":102},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026gdabp=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://sbacertify.us/lander","date":"2024-07-03T03:24:07.721Z","timestamp":1719977047721,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:36:10 GMT","end":"Thu, 05 Sep 2024 16:36:09 GMT"},"fingerprint":{"sha1":"7D:D9:03:2A:D5:D4:39:E1:4F:69:08:1C:64:E9:F9:16:1C:B1:5B:CF","sha256":"40:49:A0:7A:8C:B4:07:C6:8E:08:17:26:13:38:98:D4:E6:D8:71:F1:EE:EF:30:31:28:DE:B2:04:60:5F:2F:FD"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026gdabp=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://sbacertify.us/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Wed, 03 Jul 2024 03:24:07 GMT\r\nexpires: Wed, 03 Jul 2024 03:24:07 GMT\r\ncache-control: private, max-age=3600\r\netag: \"14478135223398405352\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://www.adsensecustomsearchads.com\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":190311,"size_decoded":190311,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2248)","md5":"ccf36f98d9fc0b2f956d04d5eb1026d1","sha1":"bf39e200050ac5834f83d773d0f9d34322925c9d","sha256":"bc469889345341bee29ba77ca6fd1f483717f035ec3c9fe7b2123e7ab6dfff46","sha512":"3c7c8d70c6b0adce9e4040fc84be13caea5da662f15f653890bb65e06e3897de61e5387972432067d8823cb1f9c3dd7a4803538d2cc948f784a202d98c243464","ssdeep":"3072:iGA1V2YNrqHtLzlHGX38XqXGRkCQvmDulhn:ibj2ZpzlHYX6klvmilV","tlshash":"aa047dd9b2b57026579398a0902f464fb236fc15e849c1b8f089d4e5bcb9da84373f78","first_seen":"2024-06-12T21:31:08Z","last_seen":"2024-08-19T20:10:03.61602Z","times_seen":1280,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":84,"dns":1,"connect":8,"send":0,"wait":20,"receive":24,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}