{"report_id":"2e052b1e-57c6-42e9-8069-01407681e389","version":6,"status":"done","tags":[],"date":"2024-08-11T03:06:52Z","url":{"schema":"http","addr":"31.28.161.52/","fqdn":"31.28.161.52","domain":"31.28.161.52","tld":""},"ip":{"addr":"31.28.161.52","port":0,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"final":{"url":{"schema":"https","addr":"cdn.riastatic.com/","fqdn":"cdn.riastatic.com","domain":"riastatic.com","tld":"com"},"title":"403 Forbidden"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T02:40:08Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":8,"received_data":7103,"sent_data":2616,"comment":"","tags":null,"fingerprints":null},{"fqdn":"31.28.161.52","ip":{"addr":"31.28.161.52","port":0,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":1,"request_count":1,"received_data":393,"sent_data":383,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.riastatic.com","ip":{"addr":"62.149.26.86","port":443,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"domain_registered":"","domain_rank":266572,"first_seen":"","last_seen":"","alert_count":0,"request_count":2,"received_data":6450,"sent_data":913,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-11","alert":"Sinkholed","trigger":"31.28.161.52","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:26.958744312Z","timestamp":1723345586958,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B4615115FB27E0022749B39770207B4428A6DCACB53544C8F811F55EF9EB288F\"\r\nLast-Modified: Thu, 08 Aug 2024 18:56:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11520\r\nExpires: Sun, 11 Aug 2024 06:18:26 GMT\r\nDate: Sun, 11 Aug 2024 03:06:26 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"5ba4a4d5001d3c1bb220558ffadb6288","sha1":"35124980489553fa524dee96738aa3214321eb4f","sha256":"b4615115fb27e0022749b39770207b4428a6dcacb53544c8f811f55ef9eb288f","sha512":"ddf9c87deacefe1395e08ed78b50fa4c47bd777787aa96f0414a722b7b6aec831ac7a253ab61cd89363401a45d3f9a19596ef707085fd101616a33f4edbae605","ssdeep":"","tlshash":"4cf00e3116923e81fea047023fe5dcab1f39e978347518ba38d80ae128157bc4988446","first_seen":"2024-08-08T22:52:57Z","last_seen":"2024-08-19T14:09:00.443992Z","times_seen":18416,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:27.041050072Z","timestamp":1723345587041,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F53B9B17675CE2F387B3FCFF02C39ECC355E1FD81756731257C59EA22115C519\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13375\r\nExpires: Sun, 11 Aug 2024 06:49:22 GMT\r\nDate: Sun, 11 Aug 2024 03:06:27 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b278ebaf27c527785e85180da86b54f9","sha1":"ee87bf3d735648b0734efe705977f9b86155fcbd","sha256":"f53b9b17675ce2f387b3fcff02c39ecc355e1fd81756731257c59ea22115c519","sha512":"cb3aaf33a3d79063fb2a85a6e422c3d0096fc55946a45e0a6cd52439a18ab5bc4107c2968af39845b807e4b95c75bd035fc6d40d9e798b5739da16f03bbfed38","ssdeep":"","tlshash":"61f0054a17556ed1f374e30016f1f15f1d11da7c391a99d13cc181f17882f89890860c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:28.268493Z","times_seen":30651,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:27.461247211Z","timestamp":1723345587461,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F6E3FF7FE8C3E33CC9A5F443E3772734A7026EC834F48A39703F23467F33C23F\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2276\r\nExpires: Sun, 11 Aug 2024 03:44:23 GMT\r\nDate: Sun, 11 Aug 2024 03:06:27 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"9ee33ad49fc95cbec52887b67a3f8f92","sha1":"a692164ae79e5d194dac7945b76eb493f261a103","sha256":"f6e3ff7fe8c3e33cc9a5f443e3772734a7026ec834f48a39703f23467f33c23f","sha512":"88064188dfed9871f57970b00729f392ee66bc3adce0dc1bc3ced83d8c6bee3a34bca114f12cccc5405d6fe9a0269d541ae9354bb7dd32b964a3e304dac39f71","ssdeep":"","tlshash":"3ef00543157d7ed2e7b81b062d9ac42f1f28fbb504997e74758551836440bd4ce8654c","first_seen":"2024-08-09T02:22:28Z","last_seen":"2024-08-19T14:07:43.139141Z","times_seen":32385,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:27.582016522Z","timestamp":1723345587582,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"DD403EF6D8531526826D75C9CEDA54BEEA36B5C8B8A281297331818AC6336B23\"\r\nLast-Modified: Thu, 08 Aug 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11773\r\nExpires: Sun, 11 Aug 2024 06:22:40 GMT\r\nDate: Sun, 11 Aug 2024 03:06:27 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e1cd74cbd513bcac7faf7147dd0e9db3","sha1":"5c83e98e78beec3020f4942369d9c2365a7de76f","sha256":"dd403ef6d8531526826d75c9ceda54beea36b5c8b8a281297331818ac6336b23","sha512":"19fb7ac3f99ed2a1529d1cb4dd880ce68b7d4031c437ed07501ff7901c6fb49ef5cbe7e55ab9224bcd2a456131e7256cdece77a7b73495a9c8f2a88e8997b18e","ssdeep":"","tlshash":"6cf0055649e8fec06b5214450796cd562d31efdb7411b4d860c40ac570103fecd985d4","first_seen":"2024-08-09T02:42:06Z","last_seen":"2024-08-19T14:07:40.921063Z","times_seen":28022,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"31.28.161.52/","fqdn":"31.28.161.52","domain":"31.28.161.52","tld":"52"},"ip":{"addr":"31.28.161.52","port":0,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-08-11T03:06:27.539Z","timestamp":1723345587539,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 31.28.161.52\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: nginx\r\nDate: Sun, 11 Aug 2024 03:06:28 GMT\r\nContent-Type: text/html\r\nContent-Length: 162\r\nConnection: keep-alive\r\nLocation: https://cdn.riastatic.com/\r\nrid: 7da71e6c70419adf1d61d1cdcc62e2b9\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":162,"size_decoded":162,"mime_type":"","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"4f8e702cc244ec5d4de32740c0ecbd97","sha1":"3adb1f02d5b6054de0046e367c1d687b6cdf7aff","sha256":"9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a","sha512":"21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f","ssdeep":"","tlshash":"0bc08cadab022cc8b8a73b3861c36160e2ec80701699451101b04a07f1cf1979ec23d1","first_seen":"2023-04-05T03:07:27Z","last_seen":"2025-10-21T23:58:19.216342Z","times_seen":131101,"resource_available":false,"data":null}},"time_used":1123,"timings":{"blocked":0,"dns":0,"connect":45,"send":0,"wait":0,"receive":0,"ssl":1073},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-11","alert":"Sinkholed","trigger":"31.28.161.52","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.riastatic.com/","fqdn":"cdn.riastatic.com","domain":"riastatic.com","tld":"com"},"ip":{"addr":"62.149.26.86","port":443,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-08-11T03:06:28.771Z","timestamp":1723345588771,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.riastatic.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 12 Sep 2023 07:45:32 GMT","end":"Sun, 13 Oct 2024 07:45:32 GMT"},"fingerprint":{"sha1":"1E:3F:D8:FC:B7:34:63:C3:20:72:A1:A5:8D:68:92:61:98:95:7F:91","sha256":"4C:09:5C:9B:51:86:A1:23:4D:46:1F:61:20:6F:01:2B:22:4F:75:59:EE:CB:68:2A:3B:2F:84:3E:E0:DE:AA:C3"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.riastatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\nserver: nginx\r\ndate: Sun, 11 Aug 2024 03:06:28 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":146,"size_decoded":146,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"9fe3cb2b7313dc79bb477bc8fde184a7","sha1":"4d7b3cb41e90618358d0ee066c45c76227a13747","sha256":"32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864","sha512":"c54ad4f5292784e50b4830a8210b0d4d4ee08b803f4975c9859e637d483b3af38cb0436ac501dea0c73867b1a2c41b39ef2c27dc3fb20f3f27519b719ea743db","ssdeep":"","tlshash":"2cc08c26351e2c0c96a322b402c36a50d092c3304c5a19004600420371c31168ac3315","first_seen":"2023-04-05T07:27:09Z","last_seen":"2026-04-06T10:05:33.15909Z","times_seen":76478,"resource_available":true,"data":null}},"time_used":426,"timings":{"blocked":191,"dns":30,"connect":43,"send":0,"wait":43,"receive":0,"ssl":115},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.riastatic.com/favicon.ico","fqdn":"cdn.riastatic.com","domain":"riastatic.com","tld":"com"},"ip":{"addr":"62.149.26.86","port":443,"asn":15497,"as":"1 Cloud Lab s.r.o.","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cdn.riastatic.com/","date":"2024-08-11T03:06:29.225Z","timestamp":1723345589225,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.riastatic.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 12 Sep 2023 07:45:32 GMT","end":"Sun, 13 Oct 2024 07:45:32 GMT"},"fingerprint":{"sha1":"1E:3F:D8:FC:B7:34:63:C3:20:72:A1:A5:8D:68:92:61:98:95:7F:91","sha256":"4C:09:5C:9B:51:86:A1:23:4D:46:1F:61:20:6F:01:2B:22:4F:75:59:EE:CB:68:2A:3B:2F:84:3E:E0:DE:AA:C3"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cdn.riastatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.riastatic.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 11 Aug 2024 03:06:29 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 5558\r\nlast-modified: Mon, 31 Jul 2023 07:18:56 GMT\r\netag: \"64c76060-15b6\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5558,"size_decoded":5558,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel","md5":"50fc1e691d53649389b76920f89f33af","sha1":"0f516e712258546e25d5fee98b8985e63c7a0ee4","sha256":"d7bda6871c106666afcb85abc6e153f30e12c5e61b99782d4a911fc8abee5d5b","sha512":"81cbcb4f69f8e2f7e420a85da68254ef7af11ff402b0daca8cf7d6a6f4ff93906bb2e2ecc1a13bd57e6819295b211c8dadf62357dacf38c861c7792242761aaa","ssdeep":"12:Nc/K2+hdPwuE2lSGQ4CFzvKWs/WAT1sIP8R5FF17kf158VlgrxKGz:N8KHYNGQlbJZ81sI2PQf12V61Z","tlshash":"93b1966ae585d1a8cb7ccb7446818eb48201fcd4d0a4a82318ff304767361426c5ffaf","first_seen":"2024-08-19T13:53:16.727612Z","last_seen":"2024-08-19T13:53:16.727612Z","times_seen":1,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:29.645519731Z","timestamp":1723345589645,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13445\r\nExpires: Sun, 11 Aug 2024 06:50:34 GMT\r\nDate: Sun, 11 Aug 2024 03:06:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:29.650591651Z","timestamp":1723345589650,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13445\r\nExpires: Sun, 11 Aug 2024 06:50:34 GMT\r\nDate: Sun, 11 Aug 2024 03:06:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:29.65277507Z","timestamp":1723345589652,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13445\r\nExpires: Sun, 11 Aug 2024 06:50:34 GMT\r\nDate: Sun, 11 Aug 2024 03:06:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-11T03:06:29.653709712Z","timestamp":1723345589653,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EB81057E97FC772C3B55FF2D175797A88DB6035F09ED472DCF8604E3C9434D1B\"\r\nLast-Modified: Thu, 08 Aug 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13529\r\nExpires: Sun, 11 Aug 2024 06:51:58 GMT\r\nDate: Sun, 11 Aug 2024 03:06:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cb72b4c8c0043447fb191d29a2987907","sha1":"b21349d4cefa64181af49f91f868ffffb136a54a","sha256":"eb81057e97fc772c3b55ff2d175797a88db6035f09ed472dcf8604e3c9434d1b","sha512":"fedf1ca548c38c303cf41daf3686e44c203fe5aff3ba2b08b7ea6cb3282e2f6dd557c14e8e9ea093f05c92a2f181038e5887e0d841bb67376cdbf8692442d9cb","ssdeep":"","tlshash":"fdf00e8022fcbed6b7302412ade2fb5e1a2aec78350c35f534cd42aa2811bbc199108c","first_seen":"2024-08-08T23:58:07Z","last_seen":"2024-08-19T14:08:36.466062Z","times_seen":28705,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}