{"report_id":"922f5109-d709-43bb-88ea-2fef9a1c827c","version":6,"status":"done","tags":[],"date":"2025-09-19T17:07:20Z","url":{"schema":"http","addr":"westchemasia.com/microsoft.com/groupchatconnect/","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":0,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"final":{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"title":"InstaVoice Message"},"submit":{"url":{"schema":"http","addr":"westchemasia.com/microsoft.com/groupchatconnect/","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":0,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-24T17:07:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"westchemasia.com","ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":21,"request_count":11,"received_data":756638,"sent_data":5587,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Nginx:1.23.4","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:3.1.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":49154,"sent_data":557,"comment":"","tags":null,"fingerprints":null},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":4915,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":69901,"sent_data":460,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":1222,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":26001,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":313,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":58771,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/tether/1.4.0/js/tether.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ecdfd3dc464ceda5f483bb5c96a6e3d2","sha1":"cbdd0a2b2dd7a9cfc5db3f33e34323afa0ca55a3","sha256":"80bd626eb6d57112072a508ee4e5ce3c2fe5673fe0a5d029810033b24aaa5e9f","sha512":"1ec6758bdbe5a34d656da7be28897fffa28fc6438eeb148f2363de7ec6620bc2e6496f4a0d63182bd8e136a13d5ec6e31b2ae740067ab121efb67475dac24f8c","ssdeep":"768:1Jc67wdFbgDo6h+T7zMczQvoK/ww8l31g9CZQ5nAgM:zn74bsopz+AK/wM5Af","tlshash":"b9b2d6a8725170b681db5263907f830e7132c17463879054b63cc9f68db8d8e62abf7e","size":24989,"data":"","first_seen":"2023-03-07T01:10:42Z","last_seen":"2026-04-06T09:59:46.771074Z","times_seen":1223,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.1.1.slim.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"550ddfe84a114f79a767c087df97f3bc","sha1":"310bd0c04196573315c2e8446776685ac2961724","sha256":"fd222b36abfc87a406283b8da0b180e22adeb7e9327ac0a41c6cd5514574b217","sha512":"b6a9146ffe380a32c89d48baf900dd5e346b0d603b8afcfad070970e56bdc744e8a8b053c2ef8a3107f4a3c2bdd11ee470e05557f542ffede5ff54468ee186c4","ssdeep":"1536:dNhEyjjTikEJO4edXXe9J578go6MWXqcVhzLyB4Lw13sh2bTQKmPNsvDU8Cur:Dxcq0hzLZwpsYbIyvDU8Cur","tlshash":"4263c5d9b2d67052db7730b850bf550bf07a98dab44c8d60e098c8e47d78a89817bf2d","size":69309,"data":"","first_seen":"2023-03-07T01:29:00Z","last_seen":"2026-04-06T06:06:18.836057Z","times_seen":446,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/js/bootstrap.min.js","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"introduction_type":"scriptElement","is_inline":false,"md5":"14d449eb8876fa55e1ef3c2cc52b0c17","sha1":"a9545831803b1359cfeed47e3b4d6bae68e40e99","sha256":"e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b","sha512":"00d9069b9bd29ad0daa0503f341d67549cce28e888e1affd1a2a45b64a4c1bc460d81cfc4751857f991f2f4fb3d2572fd97fca651ba0c2b0255530209b182f22","ssdeep":"768:9VG5R15WbHVKZrycEHSYro34CrSLB6WU/6DqBf4l1B:9VIRuo53XiwWTvl1B","tlshash":"7523c84a7254b4a202dfa476913f450bb73b389aa60bc16cb95994ed1d7cd8c3227f3c","size":48944,"data":"","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-06T10:13:50.238331Z","times_seen":103292,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/images/InstaVoice.png","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.016Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/images/InstaVoice.png HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 4873\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/png\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4873,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 195 x 44, 8-bit/color RGBA, non-interlaced","md5":"610edd155b9cb9631e66348a0e44ae10","sha1":"e5b1decd5793796b16df49c6acfbbf20ddb57ab6","sha256":"0332a0f3aeed81301a8018d4df260b52ef04f2a108a35e0b28c38c9e2ef5bbf4","sha512":"92a49dead6a759f352d59b7b8526e536eed116938d7b63b6fd92957af88cb1fb62a4bb24c96df9dd085915cb1e46f7d43fc9699c53eb9c9dfc56fb221d0eabc7","ssdeep":"96:/TCzHWQ9hN2VtavymJ4Btp2liDZW5xYvCTC6L:+H5wy6aM72liDZ+2vidL","tlshash":"1ea17e19f0919218cbfd589386689d18eeb623533929f515d7972c930b89f0082f53f1","first_seen":"2023-06-11T21:29:16Z","last_seen":"2026-03-07T22:57:51.952772Z","times_seen":17,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/images/mail.png","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/images/mail.png HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1106\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/png\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1106,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 87, 8-bit colormap, non-interlaced","md5":"d9f81cf593394338bd133aa77b0ecbaf","sha1":"24ab26a812e74cbb08bb17e495f8852a3df5a038","sha256":"2ebc65a696544b8d69ade5f136250a9548d4badf1b9ad459e63ff68e7a985c69","sha512":"28370a1ce7f1f3ca386187df2fbadae154e151de5794913fd0dae42b26545be39e9a6e2c855f4eb3d267210768ff7ae7d15268c3beda53d88fe9aa878ecf0665","ssdeep":"","tlshash":"bd11c873f768f1ba6d2e725c58d0c59da0132cdc431484b41006323d6479494ab1a248","first_seen":"2023-06-08T01:02:10Z","last_seen":"2026-03-07T22:57:51.95125Z","times_seen":18,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":232,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.559Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:48 GMT","end":"Mon, 01 Dec 2025 08:36:47 GMT"},"fingerprint":{"sha1":"4A:11:37:B2:B5:3D:85:04:18:76:94:C3:99:EA:8B:77:66:51:DF:D6","sha256":"6C:B3:8A:F8:58:9F:72:87:6E:B0:CF:E0:3F:D9:AB:6D:AE:6E:E0:73:B1:A3:95:3C:30:98:D3:C4:23:73:D4:33"}}},"request":{"raw":"GET /s/opensans/v44/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://westchemasia.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48320\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Sep 2025 23:28:50 GMT\r\nexpires: Fri, 18 Sep 2026 23:28:50 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 15 Sep 2025 16:30:41 GMT\r\ncontent-type: font/woff2\r\nage: 63486\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":48320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48320, version 1.0","md5":"dcf31ebe107435bd68e0164d59e19b87","sha1":"b68160c9333af833fe483928b3ef7128c07a56a0","sha256":"d8e4fe0452aa2076429a9bb5d8757d00a994dd95986cf950e9a1a371b9a072a0","sha512":"130cd52c3cccc36a7029bf92b2ddb363b8b36d206454aacc246739919552fccec5cacbad615ba4ac3817da3e83239371fe51324bdadd08357e3495087f62cb08","ssdeep":"768:Jzqdwl5YV7FVmpudK5a8dF8D8Z7J78VGnNFZEKh02dmSTPe9UiallHcOEi2c0NC1:9q+SYuMaVwZ7oGRNh02dd6UialBcOEpE","tlshash":"1623f218f29471f7edecd4d500a18c72baa528d442f116ed07b8d53ca36ca817a729fb","first_seen":"2025-09-17T00:07:53.723302Z","last_seen":"2026-04-06T10:10:22.794731Z","times_seen":200808,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":86,"dns":2,"connect":7,"send":0,"wait":11,"receive":9,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/wp-content/uploads/2024/04/WestChemRound-150x150.png","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:59.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /wp-content/uploads/2024/04/WestChemRound-150x150.png HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 10 Oct 2024 11:49:31 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20402\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/png\r\ndate: Fri, 19 Sep 2025 17:06:59 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20402,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"9843e1a252ca1ca2a6167909285ee230","sha1":"e325ea0e150a59532240c363d21045960c21d513","sha256":"70d2d0f26292eca948ac36b103ec726ffe42f1b5ad99b44783379a79a7728a2e","sha512":"c62a8d867b84a7dcfd8ed086dffb0fcf3e3339233299dd4e87592226c046b6012e094b27b16ebb8b4c5b8fdce882f8cbcc2efd07324d4d096a395c6f3daa011e","ssdeep":"384:B897/qUwp+NAyP/vJpC/nsW5vzTzpw7IjE5xt7qHsrtJjmdnKMrHLFafQASQw:B897XKucxJTzp4JeMhJjcKMNUQASQw","tlshash":"5892e1c9b6119479fb4520167b1ce50cea08c89941590b7e7f01f6af9fdaf13382255a","first_seen":"2025-07-27T23:03:32.336125Z","last_seen":"2026-01-19T01:09:39.880715Z","times_seen":8,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":225,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/css/bootstrap.min.css","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/css/bootstrap.min.css HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:56 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: text/css\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":144877,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65325)","md5":"450fc463b8b1a349df717056fbb3e078","sha1":"895125a4522a3b10ee7ada06ee6503587cbf95c5","sha256":"2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d","sha512":"93bf1ed5f6d8b34f53413a86efd4a925d578c97abc757ea871f3f46f340745e4126c48219d2e8040713605b64a9ecf7ad986aa8102f5ea5ecf9228801d962f5d","ssdeep":"1536:GcoqwrUPyDHU7c7TcDEBi82NcuSELL4d/+oENM6HN26Q:VoPgPard2oENM6HN26Q","tlshash":"f6e37667f591322da097ca1851c0bbfa466f8156d6221ffbf4273b604b8a6c70a73d0d","first_seen":"2023-04-05T03:09:34Z","last_seen":"2026-04-06T09:36:38.170418Z","times_seen":53226,"resource_available":false,"data":null}},"time_used":446,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":446,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.1.1.slim.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.1.1.slim.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://westchemasia.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-10ebd\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nage: 3295789\r\nx-served-by: cache-lga21978-LGA, cache-hel1410033-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 9268, 9890\r\nx-timer: S1758301616.113639,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 23709\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":69309,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32067)","md5":"550ddfe84a114f79a767c087df97f3bc","sha1":"310bd0c04196573315c2e8446776685ac2961724","sha256":"fd222b36abfc87a406283b8da0b180e22adeb7e9327ac0a41c6cd5514574b217","sha512":"b6a9146ffe380a32c89d48baf900dd5e346b0d603b8afcfad070970e56bdc744e8a8b053c2ef8a3107f4a3c2bdd11ee470e05557f542ffede5ff54468ee186c4","ssdeep":"1536:dNhEyjjTikEJO4edXXe9J578go6MWXqcVhzLyB4Lw13sh2bTQKmPNsvDU8Cur:Dxcq0hzLZwpsYbIyvDU8Cur","tlshash":"4263c5d9b2d67052db7730b850bf550bf07a98dab44c8d60e098c8e47d78a89817bf2d","first_seen":"2023-03-07T01:29:00Z","last_seen":"2026-04-06T06:06:18.836057Z","times_seen":446,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":77,"dns":1,"connect":27,"send":0,"wait":27,"receive":7,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/js/bootstrap.min.js","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/js/bootstrap.min.js HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:31:00 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: application/javascript\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":48944,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (48664)","md5":"14d449eb8876fa55e1ef3c2cc52b0c17","sha1":"a9545831803b1359cfeed47e3b4d6bae68e40e99","sha256":"e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b","sha512":"00d9069b9bd29ad0daa0503f341d67549cce28e888e1affd1a2a45b64a4c1bc460d81cfc4751857f991f2f4fb3d2572fd97fca651ba0c2b0255530209b182f22","ssdeep":"768:9VG5R15WbHVKZrycEHSYro34CrSLB6WU/6DqBf4l1B:9VIRuo53XiwWTvl1B","tlshash":"7523c84a7254b4a202dfa476913f450bb73b389aa60bc16cb95994ed1d7cd8c3227f3c","first_seen":"2023-03-07T01:02:44Z","last_seen":"2026-04-06T10:13:50.238331Z","times_seen":103292,"resource_available":true,"data":null}},"time_used":473,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":473,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/tether/1.4.0/js/tether.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.028Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/tether/1.4.0/js/tether.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://westchemasia.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 6714\r\ncf-ray: 981aad2c4f9156c7-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03ffc-619d\"\r\nlast-modified: Mon, 04 May 2020 16:17:00 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 868801\r\nexpires: Wed, 09 Sep 2026 17:06:56 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rYVOcAqhkBFYmiE2wY2q9B6LL554Czjfqvs5RzovApFAv0L4xS6dSiV2VsyvGmbG27yb9AMjJo6OhHzafKU7E6nJjr%2BwLWTiQ25maCJXTAJ9Qvhe94DrcCmJ85xk1WhqVp7rWJTS\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24989,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (24989), with no line terminators","md5":"ecdfd3dc464ceda5f483bb5c96a6e3d2","sha1":"cbdd0a2b2dd7a9cfc5db3f33e34323afa0ca55a3","sha256":"80bd626eb6d57112072a508ee4e5ce3c2fe5673fe0a5d029810033b24aaa5e9f","sha512":"1ec6758bdbe5a34d656da7be28897fffa28fc6438eeb148f2363de7ec6620bc2e6496f4a0d63182bd8e136a13d5ec6e31b2ae740067ab121efb67475dac24f8c","ssdeep":"768:1Jc67wdFbgDo6h+T7zMczQvoK/ww8l31g9CZQ5nAgM:zn74bsopz+AK/wM5Af","tlshash":"b9b2d6a8725170b681db5263907f830e7132c17463879054b63cc9f68db8d8e62abf7e","first_seen":"2023-03-07T01:10:42Z","last_seen":"2026-04-06T09:59:46.771074Z","times_seen":1223,"resource_available":true,"data":null}},"time_used":78,"timings":{"blocked":20,"dns":1,"connect":1,"send":0,"wait":13,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.246Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Sep 2025 08:36:49 GMT","end":"Mon, 01 Dec 2025 08:36:48 GMT"},"fingerprint":{"sha1":"9E:38:51:02:B6:22:9C:08:6B:24:B8:A0:EB:DB:60:D9:27:B2:68:90","sha256":"67:AF:7E:56:AB:8D:96:FB:D0:75:CA:28:6D:16:B6:67:FD:7F:58:6F:CC:AA:78:B5:01:13:76:2C:AB:BE:80:4E"}}},"request":{"raw":"GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 19 Sep 2025 17:06:56 GMT\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":58085,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"52d638a6553570c3ad986bba186f87a3","sha1":"da89c64b60fbc4f0d5442625759a6773ea59eb33","sha256":"36d64bccd2b2274c66aeb6e420a20c306ee9d350b7c873899fb5e31de0416765","sha512":"43c270c640ddf25de6bd9e9a0154e8c8d37b4c3cc2ebb810f853870910e5aa199c504b38478d0595f5fbf81904a4067863f7c8c0fea612932a24f8fb36f195bf","ssdeep":"384:+eO2pXt2tv/qY49Ynx8bOjI8t7KvGqY49xn+vROFuGttcvoqY497nMZ6OiFLty5e:YbPUiCAgkgHL8OOVosL3JbcI/z","tlshash":"84431c910417244066432dd233de3e30ee0fa2607084c076abfd9bdbeedad6a62b535d","first_seen":"2025-09-17T00:16:45.671638Z","last_seen":"2026-04-06T10:05:03.887454Z","times_seen":14917,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":111,"dns":0,"connect":20,"send":0,"wait":30,"receive":0,"ssl":88},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/images/office.png","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/images/office.png HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 6290\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/png\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":6290,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit colormap, non-interlaced","md5":"1ac039422d7c9cee436b2cae5c00bd8c","sha1":"60d9b9a6e2df337578c35472344f1387775046d8","sha256":"1500514adf9e666a3d20530815df881bc94812c6906a53bd4c216d051d18c372","sha512":"03b225379ad1b46e3af9aa3218812aed61d70431b17d75842e3cd426dbd960e940fb8c127f8d9df7251039034a43848ce3eb612ed7b98d9a69050af7ce7b0d7b","ssdeep":"192:5PesVaBqtC11xXiQU2SrR9PDD+2p4SWnR3m4UMWx:Zwyi3iQZSrRBDHmfHUMe","tlshash":"25d14c12e7801cadce47c27e431b5e96ece1549730184b2f0f9c997e4c72a46eaf5e4a","first_seen":"2023-06-08T01:02:10Z","last_seen":"2026-03-07T22:57:51.95341Z","times_seen":18,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/favicon.ico","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Fri, 19 Sep 2025 17:06:58 GMT\r\nserver: nginx/1.23.4\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 0\r\nlink: \u003chttps://westchemasia.com/wp-json/\u003e; rel=\"https://api.w.org/\"\r\nx-redirect-by: WordPress\r\nlocation: https://westchemasia.com/wp-content/uploads/2024/04/WestChemRound-150x150.png\r\ncontent-security-policy: upgrade-insecure-requests, upgrade-insecure-requests\r\nx-server-cache: false\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx:1.23.4","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"WordPress","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":20402,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T10:11:42.852405Z","times_seen":13418069,"resource_available":true,"data":null}},"time_used":2097,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2097,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-19T17:06:54.417Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/ HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 19 Sep 2025 17:06:55 GMT\r\nserver: nginx/1.23.4\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 960\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-security-policy: upgrade-insecure-requests\r\nx-server-cache: false\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:3.1.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"cdnjs","description":"cdnjs is a free distributed JS library delivery service.","website":"https://cdnjs.com","common_platform_enumeration":"","icon":"cdnjs.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Nginx:1.23.4","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]}],"data":{"size":2237,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"af71d7c248c87204b08f919b75277d15","sha1":"9e1a0fa0bf8a65b75178d195c2f80f767c8d6939","sha256":"ea2323076864b269c68ba3d7d74c2f6be04f7c62ec11c07034533e9200cb6161","sha512":"18d32e589e6d982a79522d0361db2c9c62564493ec2824abcb1f16c09f29dc7e42b88c21621f8df5da6f4f4bdd4b80fa345392b69535f33f941bf900fe74562b","ssdeep":"","tlshash":"f641462a26f0031b00a346c839e12d5f7dd6b61ba957894d73ae4bae8f83d4fd863514","first_seen":"2023-06-11T21:29:16Z","last_seen":"2026-03-07T22:57:51.947263Z","times_seen":13,"resource_available":true,"data":null}},"time_used":2422,"timings":{"blocked":1024,"dns":386,"connect":205,"send":0,"wait":374,"receive":0,"ssl":430},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/images/landing-devices-bg.jpg","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/images/landing-devices-bg.jpg HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 492525\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/jpeg\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":492525,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 3840x1600, components 3","md5":"a5a9ec8b940966d052451c9ea02e6a14","sha1":"cbcb7862a931cc09241b4c84d107b044fa1cc722","sha256":"157753635b2942ab23985e14ccc21abd2e1ebf3c94108a59ecb308dc7fc1f2f6","sha512":"331df14f14aa29bd6d1d7edd2548e5f45bbacba253c5ead9a1f29a877d8d0b6ef7cd73d6ffba55366872c015cef5f129eaecd7861aad91c467108d68be5e9706","ssdeep":"6144:hGy5VjYR/3kyhulztdxNr99HWq/xsgPpJjn6li3LtZT5l2g9Z5CoBpQqYF17oUzz:hGoVjjqu5tN7pPjnLbt3l2gr53BlyT/","tlshash":"8da4f2034c099ad3506943f47e436e9c2b4e6b1dd9d63bff44560eda3b603229d9e22e","first_seen":"2023-06-11T21:29:16Z","last_seen":"2026-03-07T22:57:51.955594Z","times_seen":17,"resource_available":false,"data":null}},"time_used":755,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":489,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/images/outlook.png","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/images/outlook.png HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:58 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1746\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-type: image/png\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1746,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 213 x 211, 8-bit colormap, non-interlaced","md5":"cacdee9959d34380d727718fd02b3711","sha1":"eb971467c555ea2299cc31018c8bc85f67da59d7","sha256":"17f02fdb590800c9a21e2b6166f5f22cc54952d58897f09d8e82bb9195bc2071","sha512":"4f0a4bb3219ba1f9aae6b527b9125fee3327bdca82142dfc23e6e6c5f4481065a221291a35bbcf1e35cfe9ee658ab22e4bc85dc58c17a2b95c5fc2846986fb66","ssdeep":"","tlshash":"e931088ff21894215c2521825b9dc12fda3b4c002abc34f50b85f87c52b68788b2c1a5","first_seen":"2023-06-08T01:02:10Z","last_seen":"2026-03-07T22:57:51.953931Z","times_seen":17,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"westchemasia.com/microsoft.com/groupchatconnect/css/style.css","fqdn":"westchemasia.com","domain":"westchemasia.com","tld":"com"},"ip":{"addr":"45.113.122.245","port":443,"asn":394695,"as":"PUBLIC-DOMAIN-REGISTRY","country":"India","country_code":"IN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://westchemasia.com/microsoft.com/groupchatconnect/","date":"2025-09-19T17:06:56.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"westchemasia.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 08 Apr 2025 00:00:00 GMT","end":"Sat, 09 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"90:C9:7A:5D:97:5E:86:0E:91:A9:8B:5A:27:90:03:F3:E3:3F:9A:7D","sha256":"15:67:8D:6B:42:9C:72:E8:E8:C0:92:ED:67:68:76:C5:11:65:54:CD:7C:CD:51:85:75:24:94:DE:7B:B7:43:93"}}},"request":{"raw":"GET /microsoft.com/groupchatconnect/css/style.css HTTP/1.1\r\nHost: westchemasia.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://westchemasia.com/microsoft.com/groupchatconnect/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 18 Aug 2021 03:30:56 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-security-policy: upgrade-insecure-requests\r\ncontent-length: 3245\r\ncontent-type: text/css\r\ndate: Fri, 19 Sep 2025 17:06:56 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10088,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"e4c124f84be2a66c6069e569257e6cf3","sha1":"e9b6e3207ceaf681f763a49ebcd71837a8ea5cfb","sha256":"4da858a3ec305f55bafb14b408e69398ae8e7aa76ac67025eec6a2534c592b64","sha512":"7c5c533aecbc3865b4794411256d2aac628e7ab9aa508c3e06fcced49f2f6b46d1d7719944f914c63d9332c9f40493a6ddae5b1bad2532e4d547960edf67fd1d","ssdeep":"192:4Sz3RzYAkFTF5bkJq0QU9esLFcqH72V2LFs:4a3nkFTF2g0X9ZLFjRs","tlshash":"c322746b6a251c4ab003d868bfba5b59270e100baf0fee7a7d58746ccfc8195907374d","first_seen":"2023-04-15T08:26:23Z","last_seen":"2026-03-07T22:57:51.948224Z","times_seen":25,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":238,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-19","alert":"Sinkholed","trigger":"westchemasia.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-09-19","alert":"Phishing Block","trigger":"westchemasia.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}