{"report_id":"92090b8f-f3e6-4bf8-8bc2-c50e66f33271","version":6,"status":"done","tags":[],"date":"2024-03-03T22:33:23Z","url":{"schema":"http","addr":"192.124.249.36/","fqdn":"192.124.249.36","domain":"192.124.249.36","tld":""},"ip":{"addr":"192.124.249.36","port":0,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"192.124.249.36/","fqdn":"192.124.249.36","domain":"192.124.249.36","tld":"36"},"title":"Sucuri WebSite Firewall - Not Configured"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T22:33:57Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2024-03-03 21:26:24","alert_count":0,"request_count":2,"received_data":46040,"sent_data":890,"comment":"","tags":null,"fingerprints":null},{"fqdn":"192.124.249.36","ip":{"addr":"192.124.249.36","port":0,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2019-09-05 23:54:29","last_seen":"2023-10-14 19:24:43","alert_count":2,"request_count":2,"received_data":4737,"sent_data":724,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.sucuri.net","ip":{"addr":"192.124.249.16","port":443,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"domain_registered":"2009-04-24","domain_rank":107164,"first_seen":"2017-01-29 12:44:08","last_seen":"2024-02-29 12:02:33","alert_count":0,"request_count":2,"received_data":27722,"sent_data":852,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2024-03-03 19:35:54","alert_count":0,"request_count":3,"received_data":147207,"sent_data":1620,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-03-03","alert":"Sinkholed","trigger":"192.124.249.36","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-03-03","alert":"Sinkholed","trigger":"192.124.249.36","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"192.124.249.36/","fqdn":"192.124.249.36","domain":"192.124.249.36","tld":"36"},"ip":{"addr":"192.124.249.36","port":0,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-03-03T22:22:26.494Z","timestamp":1709504546494,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 192.124.249.36\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: Sucuri/Cloudproxy\r\nDate: Sun, 03 Mar 2024 22:22:26 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Sucuri-ID: 19036\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":2178,"size_decoded":2178,"mime_type":"","magic":"HTML document, ASCII text","md5":"8b0f06415b161941c9087effbf1ddc46","sha1":"124dd0b618f53b4c9dddc3d28d1f64b489054981","sha256":"5883fe515b2475750e402fe3bf1aa2d72b8a02315df16534bca5dfe9acb3d99a","sha512":"ef124b8426664870d0f67593b41be6f2ad5eb838ec7f5317fadbe9c427f2cef626def1f735dda83b1e251974065143d33aafa2c69b467544d7ad1477f1eef5c5","ssdeep":"","tlshash":"5141542be18e207f0321d5c217623f5996c2267dd7440159cedbda3babc8a60e04128a","first_seen":"2024-08-20T08:27:16.307355Z","last_seen":"2024-08-20T08:27:16.307355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":0,"dns":0,"connect":24,"send":0,"wait":0,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-03-03","alert":"Sinkholed","trigger":"192.124.249.36","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sucuri.net/sucuri-firewall-block.css","fqdn":"cdn.sucuri.net","domain":"sucuri.net","tld":"net"},"ip":{"addr":"192.124.249.16","port":443,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.008Z","timestamp":1709504547008,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sucuri.net","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 08 Sep 2023 16:18:23 GMT","end":"Wed, 09 Oct 2024 16:18:23 GMT"},"fingerprint":{"sha1":"89:47:F7:0B:72:C2:8C:FA:91:5A:D3:E5:25:AB:F5:BA:EC:AD:DE:3E","sha256":"88:2B:D9:61:C3:A2:B5:FC:63:49:8F:90:09:9F:9B:30:B2:5D:70:0C:1F:18:62:52:42:C1:C2:72:FD:5E:11:D0"}}},"request":{"raw":"GET /sucuri-firewall-block.css HTTP/1.1\r\nHost: cdn.sucuri.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://192.124.249.36/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 03 Mar 2024 22:22:26 GMT\r\ncontent-type: text/css\r\ncontent-length: 13368\r\nx-sucuri-id: 19016\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Tue, 09 May 2017 16:29:16 GMT\r\netag: \"3438-54f19db534f00\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-sucuri-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13368,"size_decoded":13368,"mime_type":"text/css","magic":"ASCII text, with very long lines (13367)","md5":"e530db1c081686702501256509c4d3e4","sha1":"262e17c7a3c820a0f2318acab4a24d41f71b3375","sha256":"b404206e2715889238012d484ba70010b306683326fe2601b8ed0a2dcc5feaaa","sha512":"9e81f131b2fa0ffa1492b3aea7b899284dbc09acdab93e66cfd1a77758e3366ca1e9848c9c5e93a67397a38798161978ba76673f4c33a66bae677ce4c98d44a7","ssdeep":"192:CvU0scOUq1Hoxwf+Clv/FD0FNRStxmuy6NuKlUMdDSGspm2VjXq75W3C6bQSiRm0:35H625/FgFPfLKhWSIVzuZKI","tlshash":"8e524b33fa56218d7927c42472e2abfc7c344157e26b4bfaea4573a0c75b4e75812a08","first_seen":"2023-04-19T22:55:53Z","last_seen":"2026-04-03T11:18:49.945152Z","times_seen":2936,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":53,"dns":2,"connect":24,"send":0,"wait":24,"receive":43,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.sucuri.net/sucuri-firewall-block.css","fqdn":"cdn.sucuri.net","domain":"sucuri.net","tld":"net"},"ip":{"addr":"192.124.249.16","port":443,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.008Z","timestamp":1709504547008,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.sucuri.net","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 08 Sep 2023 16:18:23 GMT","end":"Wed, 09 Oct 2024 16:18:23 GMT"},"fingerprint":{"sha1":"89:47:F7:0B:72:C2:8C:FA:91:5A:D3:E5:25:AB:F5:BA:EC:AD:DE:3E","sha256":"88:2B:D9:61:C3:A2:B5:FC:63:49:8F:90:09:9F:9B:30:B2:5D:70:0C:1F:18:62:52:42:C1:C2:72:FD:5E:11:D0"}}},"request":{"raw":"GET /sucuri-firewall-block.css HTTP/1.1\r\nHost: cdn.sucuri.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://192.124.249.36/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 03 Mar 2024 22:22:26 GMT\r\ncontent-type: text/css\r\ncontent-length: 13368\r\nx-sucuri-id: 19016\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\ncontent-security-policy: upgrade-insecure-requests;\r\nlast-modified: Tue, 09 May 2017 16:29:16 GMT\r\netag: \"3438-54f19db534f00\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\nx-sucuri-cache: HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13368,"size_decoded":13368,"mime_type":"text/css","magic":"ASCII text, with very long lines (13367)","md5":"e530db1c081686702501256509c4d3e4","sha1":"262e17c7a3c820a0f2318acab4a24d41f71b3375","sha256":"b404206e2715889238012d484ba70010b306683326fe2601b8ed0a2dcc5feaaa","sha512":"9e81f131b2fa0ffa1492b3aea7b899284dbc09acdab93e66cfd1a77758e3366ca1e9848c9c5e93a67397a38798161978ba76673f4c33a66bae677ce4c98d44a7","ssdeep":"192:CvU0scOUq1Hoxwf+Clv/FD0FNRStxmuy6NuKlUMdDSGspm2VjXq75W3C6bQSiRm0:35H625/FgFPfLKhWSIVzuZKI","tlshash":"8e524b33fa56218d7927c42472e2abfc7c344157e26b4bfaea4573a0c75b4e75812a08","first_seen":"2023-04-19T22:55:53Z","last_seen":"2026-04-03T11:18:49.945152Z","times_seen":2936,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":53,"dns":2,"connect":24,"send":0,"wait":24,"receive":43,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.398Z","timestamp":1709504547398,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 05 Feb 2024 08:19:14 GMT","end":"Mon, 29 Apr 2024 08:19:13 GMT"},"fingerprint":{"sha1":"7E:D8:A3:26:76:2A:70:11:A5:C6:42:20:61:35:14:1C:03:F2:35:55","sha256":"4B:74:05:FC:E6:A9:4E:09:43:84:47:18:9F:1C:B5:87:65:40:EE:CC:BE:FF:CE:0B:38:A9:0F:61:7E:E7:9B:A0"}}},"request":{"raw":"GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://192.124.249.36\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 29 Feb 2024 03:20:14 GMT\r\nexpires: Fri, 28 Feb 2025 03:20:14 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Dec 2023 02:08:40 GMT\r\ncontent-type: font/woff2\r\nage: 327733\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48236,"size_decoded":48236,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48236, version 1.0","md5":"015c126a3520c9a8f6a27979d0266e96","sha1":"2acf956561d44434a6d84204670cf849d3215d5f","sha256":"3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa","sha512":"02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c","ssdeep":"768:uj6JxavgLx5rjTH3CdZ3y11o4uMb2IVEhiB6z6GAAHJApICtBgso6HaOjTXHRWK:ujoa4LxZPCdm3B2IVEhiB62apApISxos","tlshash":"eb2302d92e54990d29202a63f45d6e2641301b6acedf4bbceca4ff38006c76f9fe1548","first_seen":"2023-12-14T22:52:19Z","last_seen":"2026-04-04T02:32:50.28819Z","times_seen":106737,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":175,"dns":0,"connect":8,"send":0,"wait":8,"receive":5,"ssl":163},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.398Z","timestamp":1709504547398,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 05 Feb 2024 08:19:14 GMT","end":"Mon, 29 Apr 2024 08:19:13 GMT"},"fingerprint":{"sha1":"7E:D8:A3:26:76:2A:70:11:A5:C6:42:20:61:35:14:1C:03:F2:35:55","sha256":"4B:74:05:FC:E6:A9:4E:09:43:84:47:18:9F:1C:B5:87:65:40:EE:CC:BE:FF:CE:0B:38:A9:0F:61:7E:E7:9B:A0"}}},"request":{"raw":"GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://192.124.249.36\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 29 Feb 2024 03:20:14 GMT\r\nexpires: Fri, 28 Feb 2025 03:20:14 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Dec 2023 02:08:40 GMT\r\ncontent-type: font/woff2\r\nage: 327733\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48236,"size_decoded":48236,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48236, version 1.0","md5":"015c126a3520c9a8f6a27979d0266e96","sha1":"2acf956561d44434a6d84204670cf849d3215d5f","sha256":"3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa","sha512":"02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c","ssdeep":"768:uj6JxavgLx5rjTH3CdZ3y11o4uMb2IVEhiB6z6GAAHJApICtBgso6HaOjTXHRWK:ujoa4LxZPCdm3B2IVEhiB62apApISxos","tlshash":"eb2302d92e54990d29202a63f45d6e2641301b6acedf4bbceca4ff38006c76f9fe1548","first_seen":"2023-12-14T22:52:19Z","last_seen":"2026-04-04T02:32:50.28819Z","times_seen":106737,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":175,"dns":0,"connect":8,"send":0,"wait":8,"receive":5,"ssl":163},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.398Z","timestamp":1709504547398,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 05 Feb 2024 08:19:14 GMT","end":"Mon, 29 Apr 2024 08:19:13 GMT"},"fingerprint":{"sha1":"7E:D8:A3:26:76:2A:70:11:A5:C6:42:20:61:35:14:1C:03:F2:35:55","sha256":"4B:74:05:FC:E6:A9:4E:09:43:84:47:18:9F:1C:B5:87:65:40:EE:CC:BE:FF:CE:0B:38:A9:0F:61:7E:E7:9B:A0"}}},"request":{"raw":"GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://192.124.249.36\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48236\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 29 Feb 2024 03:20:14 GMT\r\nexpires: Fri, 28 Feb 2025 03:20:14 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Dec 2023 02:08:40 GMT\r\ncontent-type: font/woff2\r\nage: 327733\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48236,"size_decoded":48236,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48236, version 1.0","md5":"015c126a3520c9a8f6a27979d0266e96","sha1":"2acf956561d44434a6d84204670cf849d3215d5f","sha256":"3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa","sha512":"02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c","ssdeep":"768:uj6JxavgLx5rjTH3CdZ3y11o4uMb2IVEhiB6z6GAAHJApICtBgso6HaOjTXHRWK:ujoa4LxZPCdm3B2IVEhiB62apApISxos","tlshash":"eb2302d92e54990d29202a63f45d6e2641301b6acedf4bbceca4ff38006c76f9fe1548","first_seen":"2023-12-14T22:52:19Z","last_seen":"2026-04-04T02:32:50.28819Z","times_seen":106737,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":175,"dns":0,"connect":8,"send":0,"wait":8,"receive":5,"ssl":163},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"192.124.249.36/favicon.ico","fqdn":"192.124.249.36","domain":"192.124.249.36","tld":"36"},"ip":{"addr":"192.124.249.36","port":80,"asn":30148,"as":"SUCURI-SEC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.701Z","timestamp":1709504547701,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 192.124.249.36\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://192.124.249.36/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: Sucuri/Cloudproxy\r\nDate: Sun, 03 Mar 2024 22:22:27 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Sucuri-ID: 19036\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":2189,"size_decoded":2189,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"f87185f5dc2774c20fbd02a553e10cda","sha1":"65d15f25579dffb0f798ed4ad34ba4cb73d6e4a3","sha256":"2afc9687eb0b3e44adf8abed029f90896cfc95d50913839f49c4eeb8757196b9","sha512":"69b2bf03f2ae28e01bb476efc3bfc9b8b86c6b950c57841e4da8d6d4efddd8ee99252515a0c6cb04c68c5448146f7fe521c6fa9bab62e83c8e5739128e84716e","ssdeep":"","tlshash":"3041542be18e207f0721d5c217623f59d6c2667dd7540199cedfde3aabcca60e04128a","first_seen":"2024-08-20T08:27:16.310923Z","last_seen":"2024-08-20T08:27:16.310923Z","times_seen":1,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-03-03","alert":"Sinkholed","trigger":"192.124.249.36","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans:400,300,600,700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.005Z","timestamp":1709504547005,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 05 Feb 2024 08:19:19 GMT","end":"Mon, 29 Apr 2024 08:19:18 GMT"},"fingerprint":{"sha1":"48:72:AA:F2:E2:69:76:76:93:18:78:2B:17:6E:20:5F:DF:87:66:5C","sha256":"FE:7B:72:DC:22:93:35:09:AF:AA:48:33:86:3D:26:03:FC:C0:70:67:97:FC:D1:D1:14:2B:2F:C9:84:CC:09:FF"}}},"request":{"raw":"GET /css?family=Open+Sans:400,300,600,700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://192.124.249.36/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 03 Mar 2024 22:22:27 GMT\r\ndate: Sun, 03 Mar 2024 22:22:27 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22388,"size_decoded":22388,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"cb6afea6ee75d2fc22e4a22512425465","sha1":"f91258c83a54d1d44df8637909885b300b5d305b","sha256":"31fe46164ce2459191ca1f7727fd742ce01833ee4f705459e88d43f53fcc9f80","sha512":"91fda973e0a4490ac58e5f3881a5600e41721db09714047ce3666c680961710dc060d454fa1a668d8d43a21d9d8358cef90be89d199aa9bd4124d32f9f8fbf0b","ssdeep":"192:N/dB0q4e6uyfrbqGIwYMH17o/A85q1H6uy2rbqGIwYRe1qW/uaDqPN6uyIrbqGIO:ZFuq9PUhq9IW/q935Cq9C","tlshash":"74a2f9a00417281063431de667de7e34ee0fa2253044d0766bfd8b8beedae7962b435d","first_seen":"2024-02-10T02:36:19Z","last_seen":"2024-10-15T21:47:34.717574Z","times_seen":793,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":61,"dns":0,"connect":8,"send":0,"wait":20,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans:400,300,600,700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://192.124.249.36/","date":"2024-03-03T22:22:27.009Z","timestamp":1709504547009,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 05 Feb 2024 08:19:19 GMT","end":"Mon, 29 Apr 2024 08:19:18 GMT"},"fingerprint":{"sha1":"48:72:AA:F2:E2:69:76:76:93:18:78:2B:17:6E:20:5F:DF:87:66:5C","sha256":"FE:7B:72:DC:22:93:35:09:AF:AA:48:33:86:3D:26:03:FC:C0:70:67:97:FC:D1:D1:14:2B:2F:C9:84:CC:09:FF"}}},"request":{"raw":"GET /css?family=Open+Sans:400,300,600,700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://192.124.249.36/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 03 Mar 2024 22:22:27 GMT\r\ndate: Sun, 03 Mar 2024 22:22:27 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22388,"size_decoded":22388,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"cb6afea6ee75d2fc22e4a22512425465","sha1":"f91258c83a54d1d44df8637909885b300b5d305b","sha256":"31fe46164ce2459191ca1f7727fd742ce01833ee4f705459e88d43f53fcc9f80","sha512":"91fda973e0a4490ac58e5f3881a5600e41721db09714047ce3666c680961710dc060d454fa1a668d8d43a21d9d8358cef90be89d199aa9bd4124d32f9f8fbf0b","ssdeep":"192:N/dB0q4e6uyfrbqGIwYMH17o/A85q1H6uy2rbqGIwYRe1qW/uaDqPN6uyIrbqGIO:ZFuq9PUhq9IW/q935Cq9C","tlshash":"74a2f9a00417281063431de667de7e34ee0fa2253044d0766bfd8b8beedae7962b435d","first_seen":"2024-02-10T02:36:19Z","last_seen":"2024-10-15T21:47:34.717574Z","times_seen":793,"resource_available":false,"data":null}},"time_used":145,"timings":{"blocked":58,"dns":1,"connect":8,"send":0,"wait":20,"receive":0,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}