{"report_id":"81dd6380-503b-4b15-a022-6c0dbe95b0e4","version":6,"status":"done","tags":[],"date":"2025-01-26T10:25:29Z","url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"title":"alcuth.top - Dette nettstedet er til salgs! - alcuth Ressurser og informasjon"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-04-06T10:25:29Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"img.sedoparking.com","ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"domain_registered":"2001-09-18","domain_rank":54200,"first_seen":"2013-04-22T22:23:29Z","last_seen":"2025-01-22T04:40:26.245739Z","alert_count":0,"request_count":2,"received_data":18697,"sent_data":776,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2025-01-22T01:41:38.580872Z","alert_count":0,"request_count":1,"received_data":53811,"sent_data":398,"comment":"","tags":null,"fingerprints":null},{"fqdn":"syndicatedsearch.goog","ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2023-04-14","domain_rank":0,"first_seen":"2023-09-25T09:30:59Z","last_seen":"2025-01-22T02:34:42.873878Z","alert_count":0,"request_count":7,"received_data":156454,"sent_data":5426,"comment":"","tags":null,"fingerprints":null},{"fqdn":"afs.googleusercontent.com","ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-11-17","domain_rank":12123,"first_seen":"2013-05-06T19:11:00Z","last_seen":"2025-01-22T02:34:36.929334Z","alert_count":0,"request_count":2,"received_data":2085,"sent_data":977,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-11-03","domain_rank":0,"first_seen":"2025-01-26T10:25:26.649751Z","last_seen":"2025-01-26T10:25:26.649751Z","alert_count":3,"request_count":2,"received_data":9207,"sent_data":1272,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:04Z","timestamp":1737887104,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.8","port":45106,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:04.063102+0000\",\"flow_id\":674885617577095,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":45106,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saisosan-co-jp.aesccense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":734,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:03.978055+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1294314837065f346d16a5eaf3d1faec","sha1":"b77bb65fc97b8c1a7c5a7d964075356baff9053b","sha256":"2ca4f2a153db5c9f70cba6eb4187c428c9f5f8b792bbb0b3fe40029a52ff0051","sha512":"9e136f849f3e46bc03482e9fa502e006a7237f699037b5b03952bd9625aca280516dc44f7dff8208bb269976e426257dbd89c1c778d989787e4d196b31f8003d","ssdeep":"","tlshash":"100112960c284b32c8b36629295b7f92a09c247173c72748e80d99d9307efce559d0bb","size":842,"data":"","first_seen":"2025-01-26T10:25:30.138136Z","last_seen":"2025-01-26T10:25:30.138136Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33839cb72649c81ab58b763c95b4a163","sha1":"0c9b62881e660fded013cee58439ae287690065a","sha256":"cdded269406c9b2b49a3066d12e75913abf338cdd7fa00e31fff299efef1cb76","sha512":"c72011d6bc068615b6a9e4f659c5aeb6c04a889bd4163e4a351d7659c48e715a94002e35637c3e1cb6a9b269271fb43d6b77495000ab1143ee401e2bb68b7357","ssdeep":"","tlshash":"2e218b6e4c50822f6eb63e9e296fba04fb235421e049e1d0c54cf865397df93892d9f4","size":1302,"data":"","first_seen":"2023-04-05T04:36:39Z","last_seen":"2025-03-02T05:25:03.460086Z","times_seen":67768,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c9acb17da4a8cbcb437894775647c54","sha1":"ed3a1fd32ac86ae3512f743365c9971262a3c03c","sha256":"cee99fc550644a458d3b8a6b255765206b78b6995ec54fd99cab9e97b89a2077","sha512":"24c0ac1c12a4e6a8ae04c412df7cbc659b5a37e5746a8d7f51118026ce93ca40a575684388648d93baa3343254d209b09dfa04044917332e3fdd28b31e08a88f","ssdeep":"1536:TEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:2hNIKordHd4AIPu32TXz3fDas","tlshash":"8fe35d9d73a1742253a394f4607f018fb23af965e80888b4b198d8e47cb4da94277f7d","size":147195,"data":"","first_seen":"2025-01-22T21:47:30.18692Z","last_seen":"2025-01-29T14:05:10.24955Z","times_seen":355,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"4d2deb7f66440e8867ccb80eefa65dd8","sha1":"a6ad4ec31a4d0b410ae7184d3765c9f82e72c28c","sha256":"0f6eb145647e7de60c3694454ae69e44a1778287e227c29bfbf7c18ae6cc5dbd","sha512":"cc99bb3cecbab6b6bc5b7a8af1181af3032c2787eddef7fa883bb8dc3b5fe10addfb26517a6cb5ca8970b644b6dd8fe8212c8b070860cb021d85605a4920404f","ssdeep":"96:E7/NUiEMyNxdLv0lcUtC9lsxKKimiZY4ZlsxKKoFOGVngg4Jl0UOc:E7OixyVLv0+rbSKE+SKpFOG9gg4Jl1b","tlshash":"7491f84e0ea827bdb79437c5e2867c1427bd6667706cb488f04d5d8a17cbacf191424f","size":4272,"data":"","first_seen":"2025-01-26T10:25:30.140477Z","last_seen":"2025-01-26T10:25:30.140477Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:04Z","timestamp":1737887104,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.8","port":45106,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:04.063102+0000\",\"flow_id\":674885617577095,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":45106,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saisosan-co-jp.aesccense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":734,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:03.978055+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6b9c806773a309f24f3e7e2fa4b13599","sha1":"ad782934ee94090fd2b549dfc2287c4bcf7c92b1","sha256":"9ef53c1fd8f559b90109084e6ee345e7a2aaa3b3878349a7d34a570f8a4a1ce1","sha512":"142ff586c455e5434a794da1af2cbd5d0a655c25a48153a9a6750364fd54f674b50c183e6b209c1cf9a5e28084faed14c1fdba081f58cab3bd51fb4c58109242","ssdeep":"1536:mf4EORzzzhIHKnTi/cy7F9NckMSn1KoJ/UnUzp1cIJVMgfSOGZnss7vGTn32q8gS:GTV1KorcEVZq+327WB30rgzs","tlshash":"bde35d9d73a1742253a390f4507f018fb23af965e80888b4b198c9e47cb5da94277fbd","size":147337,"data":"","first_seen":"2025-01-21T21:27:29.388485Z","last_seen":"2025-01-27T13:08:17.359475Z","times_seen":340,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ca1da3eb223fb087a6f7dca7cadb97e9","sha1":"43f0ee5f2556858ecdc5b49df27272a08a12b975","sha256":"f32320baa5733ebd2020aa0dc1f475d2fd921c1aa6b9efa69a4ee55c2a6b5212","sha512":"3c0ad6cde99a1c4da97b162a9fae5e9e9a2de32ba136f5d6cd0c725bdf1a2be47fde24e5638a86c3056d4b35d4a626e97f05e9ecfe36768c8b910742431bc4b6","ssdeep":"","tlshash":"41f0a2b536710346d632e757e1d61161bd69d013c081f57271ff90100bdca665691b9a","size":622,"data":"","first_seen":"2023-05-15T01:28:55Z","last_seen":"2025-01-29T03:12:11.294083Z","times_seen":1978,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:04Z","timestamp":1737887104,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.8","port":45106,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:04.063102+0000\",\"flow_id\":674885617577095,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":45106,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saisosan-co-jp.aesccense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":734,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:03.978055+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"978e89b89f929ebbd0a746295eafbcbe","sha1":"6b92ab60432c1e5a8aebc60ebc94f1f24c28cea6","sha256":"848eaac812a5c6ef9f75fc33f2bfbb7169bfea60bc4d4a28a7e77d1737ca42ac","sha512":"c7b6c342a6cc4121c889e38dc07ec85f7b3b1ff7811c0babb5f5abaf39a984424751eb1a7ff400e9bd45f0d49e96be85ff30023dfe9de0b3c0463e1d136e42d1","ssdeep":"96:zQIHrUsXy9Cp1OuKfIqT1M6BXXjgXnB9qPsBJaqJ4uSnx73CUnKVGSrbH:jrUs2nDxQqPJTuIRIESrbH","tlshash":"26c194723145347a4aff0751206f1f14b67ae8533a08b419b028b7e82bebd5744dbb6a","size":5888,"data":"","first_seen":"2024-05-23T11:11:38Z","last_seen":"2026-03-23T00:52:59.161451Z","times_seen":188504,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:04Z","timestamp":1737887104,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.8","port":45106,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:04.063102+0000\",\"flow_id\":674885617577095,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":45106,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saisosan-co-jp.aesccense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":734,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:03.978055+0000\"}}"}],"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":0,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-26T10:25:03.843Z","timestamp":1737887103843,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /jp.php/?sub1=20250126-2124-543c-b058-744a035b9989 HTTP/1.1\r\nHost: ww16.saisosan-co-jp.aesccense.alcuth.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sun, 26 Jan 2025 10:25:04 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ntransfer-encoding: chunked\r\nvary: Accept-Encoding\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nx-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Gs5ewquiyvpZXm7xtINw+ewE5mBg5C6qSFNknhlIC9lSzss+0LfCBk+Nov6M6kg2vJuU6BN63a6aEPZNZXCEJQ==\r\nlast-modified: Sun, 26 Jan 2025 10:25:04 GMT\r\nx-cache-miss-from: parking-759f8f6b6-4jp88\r\nserver: Parking/1.0\r\ncontent-encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8378,"size_decoded":25614,"mime_type":"","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10668)","md5":"3a83752ed4bc6e3b1d8cc957c9a9bfdc","sha1":"fdcc607b6b28209c1b5dff238cf48dc6413eb4fa","sha256":"cc6c857a59a2de9c9ed5ca6d26910f77186539f734ec94f0d441afc8cf49a605","sha512":"bd651f9daf0e8a93d2c11937886cd80613a6c76563a7d5fc564da60cd8d34dd97313d730dd25877b531001d5675f802f127ce247a401b5a18471105c28fefd17","ssdeep":"768:5ixyExTN1L6Cjf4iyixyV4wo+93ul5EBX0KGBTuIOESPO:5ukpo+tulyEKGluBESPO","tlshash":"c0b2d7322a883575b2b7865db1d1bb10b734c913d51669a9f05cf3a8cfcac8706d2f0a","first_seen":"2025-01-26T10:25:30.125684Z","last_seen":"2025-01-26T10:25:30.125684Z","times_seen":1,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":56,"dns":0,"connect":24,"send":0,"wait":0,"receive":0,"ssl":30},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-01-26T10:25:04Z","timestamp":1737887104,"ip_dst":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"ip_src":{"addr":"172.18.0.8","port":45106,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2025-01-26T10:25:04.063102+0000\",\"flow_id\":674885617577095,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":45106,\"dest_ip\":\"64.190.63.136\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"ww16.saisosan-co-jp.aesccense.alcuth.top\",\"url\":\"/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":795},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":2,\"bytes_toserver\":734,\"bytes_toclient\":1588,\"start\":\"2025-01-26T10:25:03.978055+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"img.sedoparking.com/templates/bg/multi-arrows.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.322Z","timestamp":1737887104322,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /templates/bg/multi-arrows.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 26 Jan 2025 10:25:04 GMT\r\nContent-Type: image/png\r\nContent-Length: 2531\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: max-age=604800\r\nExpires: Sun, 02 Feb 2025 10:25:04 GMT\r\nX-CFHash: \"53f75042704429bbc0e7b7f6e85bcb1d\"\r\nX-CFF: B\r\nLast-Modified: Mon, 19 Dec 2022 10:23:48 GMT\r\nX-CF3: H\r\nCF4Age: 432175\r\nx-cf-tsc: 1736997929\r\nCF4ttl: 31103824.000\r\nX-CF2: H\r\nServer: CFS 1124\r\nX-CF-ReqID: aabea4b8311c5a4630c958241b932d28\r\nX-CF1: 11696:fC.arn1:cf:nom:cacheN.arn1-01:H\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2531,"size_decoded":2531,"mime_type":"image/png","magic":"PNG image data, 150 x 699, 8-bit colormap, non-interlaced","md5":"53f75042704429bbc0e7b7f6e85bcb1d","sha1":"f5f38bd2b62556831782ee4c28456c33323926ce","sha256":"bdb38096f60e6d8afd62265287852a6c82a818ec048e0288a88f2b96b4b8f475","sha512":"11df32197ab23677a64bf5d872f35664a895c2cdd73039fbcc2725252ee3ac8116f98d9086de567046c7fa14e8a7033135c5e22ad1ba3fd7147c3a95a302c13e","ssdeep":"","tlshash":"9c51c7d96e5d15e4caedba312a633ab45d5f28440392f0b2aef18c560c34645823ed67","first_seen":"2023-04-25T19:56:26Z","last_seen":"2026-04-03T14:38:31.047819Z","times_seen":9329,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":20,"dns":0,"connect":24,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.google.com/adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.100","port":80,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.318Z","timestamp":1737887104318,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /adsense/domains/caf.js?abp=1\u0026YEr3CiF6AuQqLspNobyal3ji0SyqxBLn=true HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Type: text/javascript; charset=UTF-8\r\nCross-Origin-Resource-Policy: cross-origin\r\nCross-Origin-Opener-Policy: same-origin; report-to=\"ads-afs-ui\"\r\nReport-To: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\nDate: Sun, 26 Jan 2025 10:25:04 GMT\r\nExpires: Sun, 26 Jan 2025 10:25:04 GMT\r\nCache-Control: private, max-age=3600\r\nETag: \"17784381104755451226\"\r\nX-Content-Type-Options: nosniff\r\nLink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\nContent-Encoding: gzip\r\nTransfer-Encoding: chunked\r\nServer: sffe\r\nX-XSS-Protection: 0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":53143,"size_decoded":147337,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1895)","md5":"6b9c806773a309f24f3e7e2fa4b13599","sha1":"ad782934ee94090fd2b549dfc2287c4bcf7c92b1","sha256":"9ef53c1fd8f559b90109084e6ee345e7a2aaa3b3878349a7d34a570f8a4a1ce1","sha512":"142ff586c455e5434a794da1af2cbd5d0a655c25a48153a9a6750364fd54f674b50c183e6b209c1cf9a5e28084faed14c1fdba081f58cab3bd51fb4c58109242","ssdeep":"1536:mf4EORzzzhIHKnTi/cy7F9NckMSn1KoJ/UnUzp1cIJVMgfSOGZnss7vGTn32q8gS:GTV1KorcEVZq+327WB30rgzs","tlshash":"bde35d9d73a1742253a390f4507f018fb23af965e80888b4b198c9e47cb5da94277fbd","first_seen":"2025-01-21T21:27:29.388485Z","last_seen":"2025-01-27T13:08:17.359475Z","times_seen":340,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":24,"dns":1,"connect":26,"send":0,"wait":33,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww16.saisosan-co-jp.aesccense.alcuth.top/search/tsc.php?ses=ogcsc6-oVDgGPCTs7xzhpRGfot0SzoeKQnpCCmnpOo0Chq3IdcVosPtOBDRPYo-FTeSqy4AFvGzHBnLZ6YJW2d-ESGgPh3Eny1JWkoPeNkj4k5YS0lm9Ugp8co5NeqrUSRB2QAStbrgDZsjjJKWTxqMhUBgfIzkRe9_ecjhRkhtjHpgJGAaCA9036ipRSGENTj7Zju2H1kK9xg2wQiTV5fHbhQ9EBAx_K3DmiQzDzknq9b2678gv0UhEUSsMM432mK7nMAnrypu7d0mL-GNtH4Q1Mz6Odd71G5RufLYVaQN65X1he4VdhMOxfmpS5nc5-4VYFNfhSHhI1A1cWUrtprOmGe7chBEkGOXLkTug4ACrum9lYArZ7NFNLFb-A\u0026cv=2","fqdn":"ww16.saisosan-co-jp.aesccense.alcuth.top","domain":"alcuth.top","tld":"top"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.535Z","timestamp":1737887104535,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /search/tsc.php?ses=ogcsc6-oVDgGPCTs7xzhpRGfot0SzoeKQnpCCmnpOo0Chq3IdcVosPtOBDRPYo-FTeSqy4AFvGzHBnLZ6YJW2d-ESGgPh3Eny1JWkoPeNkj4k5YS0lm9Ugp8co5NeqrUSRB2QAStbrgDZsjjJKWTxqMhUBgfIzkRe9_ecjhRkhtjHpgJGAaCA9036ipRSGENTj7Zju2H1kK9xg2wQiTV5fHbhQ9EBAx_K3DmiQzDzknq9b2678gv0UhEUSsMM432mK7nMAnrypu7d0mL-GNtH4Q1Mz6Odd71G5RufLYVaQN65X1he4VdhMOxfmpS5nc5-4VYFNfhSHhI1A1cWUrtprOmGe7chBEkGOXLkTug4ACrum9lYArZ7NFNLFb-A\u0026cv=2 HTTP/1.1\r\nHost: ww16.saisosan-co-jp.aesccense.alcuth.top\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sun, 26 Jan 2025 10:25:04 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nx-cache-miss-from: parking-759f8f6b6-jwq5r\r\nserver: Parking/1.0\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T20:30:56.573385Z","times_seen":13302581,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-01-26","alert":"Sinkholed","trigger":"alcuth.top","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"img.sedoparking.com/templates/logos/sedo_logo.png","fqdn":"img.sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"205.234.175.175","port":80,"asn":30081,"as":"CACHENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.568Z","timestamp":1737887104568,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /templates/logos/sedo_logo.png HTTP/1.1\r\nHost: img.sedoparking.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 26 Jan 2025 10:25:04 GMT\r\nContent-Type: image/png\r\nContent-Length: 15086\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\nCache-Control: max-age=604800\r\nExpires: Sun, 02 Feb 2025 10:25:04 GMT\r\nX-CFHash: \"def00c11b1596db4efee6a9fbe64fc27\"\r\nX-CFF: B\r\nLast-Modified: Mon, 11 Jan 2021 07:44:34 GMT\r\nX-CF3: H\r\nCF4Age: 0\r\nx-cf-tsc: 1729867994\r\nCF4ttl: 31536000.000\r\nX-CF2: H\r\nServer: CFS 1124\r\nX-CF-ReqID: 63af56af030e16a1c842e2928676fc45\r\nX-CF1: 11696:fC.arn1:cf:nom:cacheN.arn1-01:H\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15086,"size_decoded":15086,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"def00c11b1596db4efee6a9fbe64fc27","sha1":"bd298981e6d8d7e4ffa18abcf687041f4246672d","sha256":"95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4","sha512":"c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f","ssdeep":"192:jiHSINqv0tJ30DezSfPAXTZwC3D2N2xp1Fd/ar/+zi3LHZNwkQH0iWpXDt3TN8rB:jzAnP9j","tlshash":"31623e0bfd4bc358ce50b23ae67c4bfb6361d8c1b090a7e257d9d51aafa7b014c9a011","first_seen":"2023-04-14T07:11:21Z","last_seen":"2026-04-03T20:22:03.670222Z","times_seen":219693,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads/i/iframe.html","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.520Z","timestamp":1737887104520,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/ads/i/iframe.html HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/html\r\ncontent-security-policy: script-src 'nonce-OEUiPpAT8JI5qQbKlBvIdw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none'\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ncontent-length: 729\r\ndate: Sun, 26 Jan 2025 10:25:04 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, must-revalidate\r\nlast-modified: Tue, 17 Sep 2024 06:00:00 GMT\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":729,"size_decoded":1560,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1559)","md5":"3485b30bfc9cb3764887fa3cf809642d","sha1":"b07d2e3981753b588b039d9b477d952a40791938","sha256":"25e6f286cd066436b10fba9a359cc468701217eb359c955ce450932f86a5d03a","sha512":"308d5dc9729b43676b09275e758fea184b43cebdaa48697c86e820039aed9a9488c62186c27a598969121ac2c3e9e6b344ea27e81402815ba1a96c060ed4c57b","ssdeep":"","tlshash":"e431b1ae4c50412e2eb23d9d2d9bb608fa239414e449d5d0c58cf46939b9fd3882a9f4","first_seen":"2025-01-26T10:25:30.132579Z","last_seen":"2025-01-26T10:25:30.132579Z","times_seen":1,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":96,"dns":1,"connect":7,"send":0,"wait":18,"receive":0,"ssl":78},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.529Z","timestamp":1737887104529,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-disposition: inline\r\ndate: Sun, 26 Jan 2025 10:25:04 GMT\r\nexpires: Sun, 26 Jan 2025 10:25:04 GMT\r\ncache-control: private, max-age=3600\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-2YsLwOMlFNPY-5wiw1ECbw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ncontent-encoding: br\r\nserver: gws\r\ncontent-length: 3484\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3484,"size_decoded":21639,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (20850)","md5":"4ee220b6689657bdfec59df252a6d5ce","sha1":"791637fe88849a991b54dee2a99519e425921253","sha256":"ee4174414bd858c9febeb94376fb8444c20dcd271a45d4e0b255b330dc1a07ed","sha512":"ad467cb5380ed9cecc0570fdf1bd154603b5942b9cd12c3c766af0325226749238499df0c6371ea924f3f4891c8cd5723559dca2a8a65d25634965960ddb7df7","ssdeep":"192:GE12iMpgbx0BAhKVg7io2oDLoljL5oCaoVoc3BXUQ4ky:Gni0sKqWfiL2jL5Mid3BkQ4ky","tlshash":"9aa2223764a1272e0903ec54172a6f6dc295d43bc46f35e948a31f16c7e7f828be628d","first_seen":"2025-01-26T10:25:30.133864Z","last_seen":"2025-01-26T10:25:30.133864Z","times_seen":1,"resource_available":false,"data":null}},"time_used":294,"timings":{"blocked":104,"dns":0,"connect":20,"send":0,"wait":75,"receive":0,"ssl":92},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23000000","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:05.007Z","timestamp":1737887105007,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:37:05 GMT","end":"Mon, 31 Mar 2025 08:37:04 GMT"},"fingerprint":{"sha1":"D2:15:13:77:74:22:58:D3:06:17:16:14:8F:CF:FF:DF:94:2F:1E:20","sha256":"CD:CD:1C:2E:D7:A6:01:5B:E4:18:D1:4E:08:89:C5:F1:3F:78:26:0A:39:F5:0B:2E:2A:8B:13:00:8A:07:68:BF"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23000000 HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 173\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 26 Jan 2025 07:04:31 GMT\r\nexpires: Mon, 27 Jan 2025 06:04:31 GMT\r\ncache-control: public, max-age=82800\r\nage: 12034\r\nlast-modified: Thu, 02 Nov 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":173,"size_decoded":200,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a12df2436667e359ab4623080d0a6fed","sha1":"e62f87b1d55545c0836af1cd8d849b41d9ed5f4f","sha256":"245be54e1421d7f071cc82866858258d5be20e08b1ffaeb4d7f59106d1805fd6","sha512":"e73926bbc4f11c6245517744c42e80635951f4ec2352eeebdb07a3a1e808f1cd08db838c54596728f4c1346fb4b6cde76851662bbe16cb6f409f7b274268e152","ssdeep":"","tlshash":"d8d02292c2186d28c51e82f0c37c712a00ea70a2238c00ccfa81a300720c8abb861668","first_seen":"2023-05-09T10:40:20Z","last_seen":"2026-03-01T19:00:52.571164Z","times_seen":68919,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":92,"dns":1,"connect":20,"send":0,"wait":22,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23000000","fqdn":"afs.googleusercontent.com","domain":"googleusercontent.com","tld":"com"},"ip":{"addr":"142.250.74.33","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:05.009Z","timestamp":1737887105009,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.googleusercontent.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:37:05 GMT","end":"Mon, 31 Mar 2025 08:37:04 GMT"},"fingerprint":{"sha1":"D2:15:13:77:74:22:58:D3:06:17:16:14:8F:CF:FF:DF:94:2F:1E:20","sha256":"CD:CD:1C:2E:D7:A6:01:5B:E4:18:D1:4E:08:89:C5:F1:3F:78:26:0A:39:F5:0B:2E:2A:8B:13:00:8A:07:68:BF"}}},"request":{"raw":"GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23000000 HTTP/1.1\r\nHost: afs.googleusercontent.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\ncontent-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers\r\ncross-origin-opener-policy: same-origin; report-to=\"afs-native-asset-managers\"\r\nreport-to: {\"group\":\"afs-native-asset-managers\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers\"}]}\r\ncontent-length: 270\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 26 Jan 2025 04:38:00 GMT\r\nexpires: Mon, 27 Jan 2025 03:38:00 GMT\r\ncache-control: public, max-age=82800\r\nage: 20825\r\nlast-modified: Thu, 20 Jul 2023 22:48:00 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":270,"size_decoded":391,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"78d29b2362fcb5dee6fe8111c4f1c53b","sha1":"5019bfbd17efb89c68be43d489ebf98d7d707119","sha256":"008270530fe4a3f4bcbec41da05d40361aca8edf374a464c70d5cacfb8e06fd4","sha512":"af58e57cff86442af1f0b258276a751c0d0499b4b0d1379e8405069af078bb31bb7522cd63f3b0b0f6d02c1dd883189d3511866fe303fba302aa76982cd54a18","ssdeep":"","tlshash":"9fe061fb81446d048a4543b0ed09b7a846eff076539d91b7c1e0e6fcb0448da6cd2745","first_seen":"2023-05-08T11:49:16Z","last_seen":"2026-03-01T19:00:52.58765Z","times_seen":11625,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":91,"dns":2,"connect":24,"send":0,"wait":22,"receive":0,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=3fv0huye6jft\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026psid=7154764821\u0026pbt=bs\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=22%7C0%7C378%7C55%7C36\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:06.488Z","timestamp":1737887106488,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=3fv0huye6jft\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026psid=7154764821\u0026pbt=bs\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=22%7C0%7C378%7C55%7C36\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-ZxXv8_Kf2ewLytAm7XDiBA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:06 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T20:30:56.573385Z","times_seen":13302581,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=pe8nuqjii898\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026pbt=bs\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=9%7C0%7C391%7C55%7C36\u0026lle=0\u0026ifv=0\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:06.490Z","timestamp":1737887106490,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=pe8nuqjii898\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026pbt=bs\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=9%7C0%7C391%7C55%7C36\u0026lle=0\u0026ifv=0\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-XwscN7nLDAjQs0dBIzc9bg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:06 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T20:30:56.573385Z","times_seen":13302581,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=8q1q5tousa72\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026psid=7154764821\u0026pbt=bv\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=22%7C0%7C378%7C55%7C36\u0026lle=0\u0026ifv=1\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:06.494Z","timestamp":1737887106494,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=8q1q5tousa72\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026psid=7154764821\u0026pbt=bv\u0026adbx=232\u0026adby=126.05000305175781\u0026adbh=1013\u0026adbw=816\u0026adbah=161%2C161%2C161%2C161%2C161%2C161\u0026adbn=master-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=22%7C0%7C378%7C55%7C36\u0026lle=0\u0026ifv=1\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-xeJvaDIC1ITL15vHnc1ddg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:06 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T20:30:56.573385Z","times_seen":13302581,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":37,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=3nijasmx4s5a\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026pbt=bv\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=9%7C0%7C391%7C55%7C36\u0026lle=0\u0026ifv=0\u0026hpt=0","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww16.saisosan-co-jp.aesccense.alcuth.top/jp.php/?sub1=20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:06.496Z","timestamp":1737887106496,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /afs/gen_204?client=dp-sedo92_3ph\u0026output=uds_ads_only\u0026zx=3nijasmx4s5a\u0026aqid=gA2WZ_yyKP7PxdwP-rfygAc\u0026pbt=bv\u0026adbx=490\u0026adby=1287.6500244140625\u0026adbh=17\u0026adbw=300\u0026adbn=slave-1-1\u0026eawp=partner-dp-sedo92_3ph\u0026errv=715046146\u0026csala=9%7C0%7C391%7C55%7C36\u0026lle=0\u0026ifv=0\u0026hpt=0 HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww16.saisosan-co-jp.aesccense.alcuth.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-GjjMt3ucXJJS18v7Sx24qw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"gws\"\r\nreport-to: {\"group\":\"gws\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gws/other\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:06 GMT\r\nserver: gws\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-03T20:30:56.573385Z","times_seen":13302581,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"syndicatedsearch.goog/adsense/domains/caf.js","fqdn":"syndicatedsearch.goog","domain":"syndicatedsearch.goog","tld":"goog"},"ip":{"addr":"216.58.207.238","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://syndicatedsearch.goog/afs/ads?adsafe=low\u0026adtest=off\u0026psid=7154764821\u0026channel=exp-0057%2Cexp-0051%2Cauxa-control-1%2C445328\u0026client=dp-sedo92_3ph\u0026r=m\u0026hl=no\u0026ivt=0\u0026rpbu=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fcaf%2F%3Fses%3DY3JlPTE3Mzc4ODcxMDQmdGNpZD13dzE2LnNhaXNvc2FuLWNvLWpwLmFlc2NjZW5zZS5hbGN1dGgudG9wNjc5NjBkODAwNzYwMzAuMDE1MDk3OTgmdGFzaz1zZWFyY2gmZG9tYWluPWFsY3V0aC50b3AmYV9pZD0zJnNlc3Npb249LW03NWFnWVd3VUVqZ2dhWHhBUWE%3D\u0026type=3\u0026uiopt=false\u0026swp=as-drid-2777688820344496\u0026oe=UTF-8\u0026ie=UTF-8\u0026fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108\u0026format=r6%7Cs\u0026nocache=9961737887104499\u0026num=0\u0026output=afd_ads\u0026domain_name=ww16.saisosan-co-jp.aesccense.alcuth.top\u0026v=3\u0026bsl=8\u0026pac=0\u0026u_his=2\u0026u_tz=0\u0026dt=1737887104509\u0026u_w=1280\u0026u_h=1024\u0026biw=1280\u0026bih=1024\u0026psw=1280\u0026psh=1479\u0026frm=0\u0026uio=--\u0026cont=rb-default\u0026drt=0\u0026jsid=caf\u0026jsv=715046146\u0026rurl=http%3A%2F%2Fww16.saisosan-co-jp.aesccense.alcuth.top%2Fjp.php%2F%3Fsub1%3D20250126-2124-543c-b058-744a035b9989","date":"2025-01-26T10:25:04.879Z","timestamp":1737887104879,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"syndicatedsearch.goog","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jan 2025 08:39:14 GMT","end":"Mon, 31 Mar 2025 08:39:13 GMT"},"fingerprint":{"sha1":"D3:8F:BC:2A:54:F4:5C:12:82:8C:1D:53:CA:58:FC:A3:D0:51:80:70","sha256":"E1:63:6D:1A:B1:0F:E2:E4:A4:7C:2D:04:25:59:91:80:86:6B:81:69:C5:5B:31:AE:BC:52:4A:56:14:77:86:DB"}}},"request":{"raw":"GET /adsense/domains/caf.js HTTP/1.1\r\nHost: syndicatedsearch.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://syndicatedsearch.goog/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Sun, 26 Jan 2025 10:25:04 GMT\r\nexpires: Sun, 26 Jan 2025 10:25:04 GMT\r\ncache-control: private, max-age=3600\r\netag: \"2683996412882585667\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://syndicatedsearch.goog\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":147195,"size_decoded":147195,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (1869)","md5":"0c9acb17da4a8cbcb437894775647c54","sha1":"ed3a1fd32ac86ae3512f743365c9971262a3c03c","sha256":"cee99fc550644a458d3b8a6b255765206b78b6995ec54fd99cab9e97b89a2077","sha512":"24c0ac1c12a4e6a8ae04c412df7cbc659b5a37e5746a8d7f51118026ce93ca40a575684388648d93baa3343254d209b09dfa04044917332e3fdd28b31e08a88f","ssdeep":"1536:TEkEERnz5nElKnTi1cI7F9NcGgLL0IKoUfUnU4F7HdsJA5gvrapbnBsDVZ232y8j:2hNIKordHd4AIPu32TXz3fDas","tlshash":"8fe35d9d73a1742253a394f4607f018fb23af965e80888b4b198d8e47cb4da94277f7d","first_seen":"2025-01-22T21:47:30.18692Z","last_seen":"2025-01-29T14:05:10.24955Z","times_seen":355,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":20,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}