{"report_id":"22a30789-d181-49ab-8701-c075e805a96a","version":0,"status":"done","tags":[],"date":"2026-06-27T05:23:04Z","url":{"schema":"http","addr":"webtrafficguard2.com","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":0,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"webtrafficguard2.com/","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"title":"Coinbase - Sign in","dom":{"size":890887,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (59092)","md5":"9cb5db4693184d2c43a2670e9cc239fe","sha1":"39351a327d4ef33bf9b4eac9c1089065bf4b5d76","sha256":"7e9417806a2ad6e1b0b8065607f3bbf91120092e686fbe335411564ef226b248","sha512":"b4afe0c82ed3a8edf063c19cba53194b11a67b88514a233dab2632af02cc451fef88d717e96c3bd18ce9c012ae9f659e6f6fa90c476f187518171f6615bad950","ssdeep":"12288:EMFb2jeOlkgbTR3f7+l1tNeRWptbdAgsbk3sDGeaGLS9vPaFJc25cC1qg6x:EVeOllTWfXbd6CsKea1PL25cV","tlshash":"e9150135e732503563178f3e50a49f9f7b2be201c60120c9a3a526867ecbba59593f37","dom_hash":"domhasha9b233c6ce146cd6ea38baf4707d5a25","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"webtrafficguard2.com","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":0,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-01T05:23:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"webtrafficguard2.com","ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"domain_registered":"2026-06-27","domain_rank":0,"first_seen":"2026-06-27T05:20:05.415066Z","last_seen":"2026-06-27T05:20:05.415066Z","alert_count":0,"request_count":7,"received_data":932665,"sent_data":3006,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"webtrafficguard2.com/js/pm-api.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"e7e0762fd8fdb8e9001e1b515a4129b9","sha1":"588b42cf6ac4067a2fe98281e5976dd1894a9881","sha256":"d9503a8dd15b7338286d6dc43aa519926b995fcb2657785b43acd38c00d58bdc","sha512":"54906cc8e8729b8a8bc0d78bc2341305c2ab4b4a1e56548daeccfac10040216e3648d01e07c9907731efd4558e9960eb46676059a63bc2cdba702ec8a42952dd","ssdeep":"","tlshash":"f0714f8a7deb3417d4ab7628d71f805a3d7099834d8ec900ba1d6284af8406dd23bddc","size":3593,"data":"","first_seen":"2026-06-27T05:20:09.347548Z","last_seen":"2026-06-27T05:23:05.472245Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/js/pm-clipboard-config.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"8f4324bd2f360fee7b871039a1021da0","sha1":"99af5eb4f6140c7efa280f13ba46abe55acfae80","sha256":"43583f2df9bf4c6f2dad4a39f78de9132a82a5558badef1fe61e69cd3bd77f66","sha512":"378dbf6e76b174130f4e73aaa3fd91af2cdef71ce4286d63036d38c18808521baebc02f6fa15f4b5fbf96405e949675bd9ded0512164b20e5cbff88c2f7a9a71","ssdeep":"","tlshash":"bd81e04e39e3a1168537707c466f958ab025a823084ecd51be5c86e1ff6513fc3f2ad8","size":3948,"data":"","first_seen":"2026-06-27T05:20:09.351435Z","last_seen":"2026-06-27T05:23:05.462192Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/cb-auth.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"d97ee2cf5f00d1e43df73538db86d842","sha1":"6fb641ff3f29a5504882d63bcc2624a4589b1fb6","sha256":"8beecd320e69ec7f67d7ddd91f7a65cf172249142c9d53c4968107dde3aa62f1","sha512":"b69094a938d193cce39c00729f4933b7d8bd35bcba225ad5c71e295a6cbe41e72a3b287e106fc5a401edc89aea6d54f57b3909d59e8b42b3990df77bc208141a","ssdeep":"384:Ggy9CtjlIEUSAzmKF71A+p9d7jEMeV7A6Lse:JlIrSAzmIMLz","tlshash":"1c52509e71f3087582b752b99bcb5114317250077a49ce883a8dc2446fec829d6bbbfd","size":14374,"data":"","first_seen":"2026-06-27T05:20:09.359405Z","last_seen":"2026-06-27T05:23:05.473911Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"webtrafficguard2.com/js/pm-clipboard-config.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:40.222Z","timestamp":1782537760222,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /js/pm-clipboard-config.js HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:40 GMT\r\nserver: Apache\r\nlast-modified: Sat, 27 Jun 2026 01:26:21 GMT\r\netag: \"f6c-655321ce3e269-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1352\r\ncontent-type: text/javascript\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3948,"size_decoded":1704,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"8f4324bd2f360fee7b871039a1021da0","sha1":"99af5eb4f6140c7efa280f13ba46abe55acfae80","sha256":"43583f2df9bf4c6f2dad4a39f78de9132a82a5558badef1fe61e69cd3bd77f66","sha512":"378dbf6e76b174130f4e73aaa3fd91af2cdef71ce4286d63036d38c18808521baebc02f6fa15f4b5fbf96405e949675bd9ded0512164b20e5cbff88c2f7a9a71","ssdeep":"","tlshash":"bd81e04e39e3a1168537707c466f958ab025a823084ecd51be5c86e1ff6513fc3f2ad8","first_seen":"2026-06-27T05:20:09.351435Z","last_seen":"2026-06-27T05:23:05.462192Z","times_seen":2,"resource_available":true,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":399,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/api/client-config.php","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:40.632Z","timestamp":1782537760632,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /api/client-config.php HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:40 GMT\r\nserver: Apache\r\ncache-control: no-store\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 153\r\ncontent-type: application/json; charset=utf-8\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":173,"size_decoded":445,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"cade522612f005cb20c6c24031f98451","sha1":"13e05aaff49d0f619a2bcf622317c8c2de89e8c8","sha256":"07159bc2ab6166fe9bf75b89e551ec5eaf5510a8292d6a15b529db6ab1cd14dd","sha512":"b60c4b3ce2ae1b4ee4faf9e7045c581caee4642448280ad95b74fef086b35cdde40f1756bf54f4b1ff4eb61c52308e9d348a37017652596146945ccece017391","ssdeep":"","tlshash":"2bc080584839c47ec657ca5540026107336d1c104cd82e58af856575540fd49912fe0f","first_seen":"2026-06-27T05:20:09.362057Z","last_seen":"2026-06-27T05:23:05.464204Z","times_seen":2,"resource_available":false,"data":null}},"time_used":366,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":366,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/api/driver-clipboard.php","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:41.006Z","timestamp":1782537761006,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /api/driver-clipboard.php HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:41 GMT\r\nserver: Apache\r\ncache-control: no-store, no-cache, must-revalidate\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 260\r\ncontent-type: application/json; charset=utf-8\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":267,"size_decoded":579,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5f605c00e0d73a84b632f3e51e9f467a","sha1":"f6c1d116cf1a20fb41406605037c0b0d6ac380c7","sha256":"a313cc0a26a5c6e2fb1a38f2f67d539c19fb4e2005888f2553a287f96e1d21f8","sha512":"af552981459071b5fa14348b2cfcbb08272cb6de467e8e80f398665a292da051219a0a39bf478390aa066fc99e31ccc265d6e182264fff609e393f31774e2e61","ssdeep":"","tlshash":"aed0eb000e0e6b00a60334d08284c342dc2ec0c70b9b70b02b23a54c0f106e2dcbb503","first_seen":"2026-06-27T05:20:09.364052Z","last_seen":"2026-06-27T05:23:05.466178Z","times_seen":2,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-27T05:22:38.946Z","timestamp":1782537758946,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:39 GMT\r\nserver: Apache\r\nlast-modified: Sat, 27 Jun 2026 01:26:21 GMT\r\netag: \"daf75-655321ce3a3e9-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/html\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":896885,"size_decoded":610496,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (59174)","md5":"a9996f54e8a32fee6f7d78c335920b95","sha1":"5e44e806f6dd598a9cffdb48103dfccf4e163bec","sha256":"b1f0d4635177ed05397a9a12f2f390d1b71ae3cad6cf88b3c5d9dc615da7a891","sha512":"f57e421906b262addf3362e9fd710cea308f0486b58aa09fc769a98dd3e6340ef083ef2d30f9cc55fdc151230345c0957d216ffb9da744371113fb3e17af6d94","ssdeep":"12288:DMFb2jeOlkgbTR3f7+l1tNeRWptbdAgsbk3sDGeaGLS9vPaFJc25cC1ag+3:DVeOllTWfXbd6CsKea1PL25cv","tlshash":"5b150135eb32503563178f3f50a49f9e772be201c60120c9a3a52695becbba19593f37","first_seen":"2026-06-27T05:20:09.353779Z","last_seen":"2026-06-27T05:23:05.468112Z","times_seen":2,"resource_available":true,"data":null}},"time_used":758,"timings":{"blocked":-1,"dns":30,"connect":118,"send":0,"wait":487,"receive":0,"ssl":123},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/cb-auth.css","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:40.014Z","timestamp":1782537760014,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /cb-auth.css HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrafficguard2.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:40 GMT\r\nserver: Apache\r\nlast-modified: Sat, 27 Jun 2026 01:26:21 GMT\r\netag: \"2b4d-655321ce3d2c9-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 2299\r\ncontent-type: text/css\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11085,"size_decoded":2645,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"307038ff5e56851ef484eff6acabb94f","sha1":"5a4421d3f373e3340b75700b4b204ffbc02ae9de","sha256":"4631d202efbb3e14e7f3abbcd7969521e90258f297c7790d5b45d1e8e2b0f2ba","sha512":"fbc036db95e0de041f7ed258b72e69acd581472b3ad006a64d10ccf263fa2d93a2ab46c8054997b18787826f3059daf3f0221d382143cd21b608f4c6a45e8367","ssdeep":"192:nWNWznJFDZA8GOZ49xxvct/HHMut4PK+4mWybcuftnCe7cjF0xymmKcC/eaFJhaj:UW3Z4MMaRq5tCeo+HFJhJqrFseFH","tlshash":"5832f0b69a695d04f60bca5ca955df92230c7193710acabd2bd8b00c8fcc1ec25b3779","first_seen":"2026-06-27T05:20:09.357151Z","last_seen":"2026-06-27T05:23:05.469845Z","times_seen":2,"resource_available":false,"data":null}},"time_used":366,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":366,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/js/pm-api.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:40.217Z","timestamp":1782537760217,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /js/pm-api.js HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:40 GMT\r\nserver: Apache\r\nlast-modified: Sat, 27 Jun 2026 01:26:21 GMT\r\netag: \"e09-655321ce3d2c9-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1202\r\ncontent-type: text/javascript\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3593,"size_decoded":1554,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"e7e0762fd8fdb8e9001e1b515a4129b9","sha1":"588b42cf6ac4067a2fe98281e5976dd1894a9881","sha256":"d9503a8dd15b7338286d6dc43aa519926b995fcb2657785b43acd38c00d58bdc","sha512":"54906cc8e8729b8a8bc0d78bc2341305c2ab4b4a1e56548daeccfac10040216e3648d01e07c9907731efd4558e9960eb46676059a63bc2cdba702ec8a42952dd","ssdeep":"","tlshash":"f0714f8a7deb3417d4ab7628d71f805a3d7099834d8ec900ba1d6284af8406dd23bddc","first_seen":"2026-06-27T05:20:09.347548Z","last_seen":"2026-06-27T05:23:05.472245Z","times_seen":2,"resource_available":true,"data":null}},"time_used":400,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":400,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrafficguard2.com/cb-auth.js","fqdn":"webtrafficguard2.com","domain":"webtrafficguard2.com","tld":"com"},"ip":{"addr":"45.88.186.214","port":443,"asn":23470,"as":"RELIABLESITE","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrafficguard2.com/","date":"2026-06-27T05:22:40.225Z","timestamp":1782537760225,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"webtrafficguard2.com","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Jun 2026 00:25:31 GMT","end":"Fri, 25 Sep 2026 00:25:30 GMT"},"fingerprint":{"sha1":"30:4F:96:99:20:98:EE:FA:8A:9B:C5:38:D5:B1:69:06:5D:5D:23:8E","sha256":"E5:C3:39:46:4D:41:DF:06:5D:DC:A6:AE:75:1B:2C:66:E2:CD:20:BD:86:4D:52:A4:DA:E5:63:AA:C6:EA:E9:D0"}}},"request":{"raw":"GET /cb-auth.js HTTP/1.1\r\nHost: webtrafficguard2.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 27 Jun 2026 05:22:40 GMT\r\nserver: Apache\r\nlast-modified: Sat, 27 Jun 2026 01:26:21 GMT\r\netag: \"3826-655321ce3b389-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4022\r\ncontent-type: text/javascript\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14374,"size_decoded":4375,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (355)","md5":"d97ee2cf5f00d1e43df73538db86d842","sha1":"6fb641ff3f29a5504882d63bcc2624a4589b1fb6","sha256":"8beecd320e69ec7f67d7ddd91f7a65cf172249142c9d53c4968107dde3aa62f1","sha512":"b69094a938d193cce39c00729f4933b7d8bd35bcba225ad5c71e295a6cbe41e72a3b287e106fc5a401edc89aea6d54f57b3909d59e8b42b3990df77bc208141a","ssdeep":"384:Ggy9CtjlIEUSAzmKF71A+p9d7jEMeV7A6Lse:JlIrSAzmIMLz","tlshash":"1c52509e71f3087582b752b99bcb5114317250077a49ce883a8dc2446fec829d6bbbfd","first_seen":"2026-06-27T05:20:09.359405Z","last_seen":"2026-06-27T05:23:05.473911Z","times_seen":2,"resource_available":true,"data":null}},"time_used":365,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":365,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}