{"report_id":"a0698811-6bcb-4277-9da8-d9299eddaaa7","version":6,"status":"done","tags":[],"date":"2023-09-07T20:04:32Z","url":{"schema":"http","addr":"mflixer.xyz/xmlrpc.php%22,%22https:/lametino.it/xmlrpc.php%22,%22https:/parisgid.ru/xmlrpc.php%22,%22https:/golfblueheron.com/xmlrpc.php%22,%22https:/foodtools.com/xmlrpc.php%22,%22https:/brasilflix.com/xmlrpc.php%22,%22https:/xn----ymcbamd3cl9knaefb5aujyl.com/xmlrpc.php%22,%22https:/demo16.easy-web24.de/xmlrpc.php%22,%22https:/birdwatchinghq.com/xmlrpc.php%22,%22https:/dchairspa.pl/xmlrpc.php","fqdn":"mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"82.192.82.227","port":0,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"Netherlands","country_code":"NL"},"final":{"url":{"schema":"http","addr":"ww1.mflixer.xyz/","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"title":"ww1.mflixer.xyz/"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T07:48:02Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ocsp.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":175,"first_seen":"2018-07-01 08:43:07","last_seen":"2023-09-07 18:12:13","alert_count":0,"request_count":2,"received_data":1399,"sent_data":666,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img1.wsimg.com","ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2008-03-17","domain_rank":9893,"first_seen":"2012-06-20 16:42:31","last_seen":"2023-09-07 20:06:50","alert_count":0,"request_count":4,"received_data":199431,"sent_data":1755,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10 13:11:19","last_seen":"2023-09-03 06:47:12","alert_count":0,"request_count":1,"received_data":152418,"sent_data":420,"comment":"","tags":null,"fingerprints":null},{"fqdn":"mflixer.xyz","ip":{"addr":"82.192.82.227","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"Netherlands","country_code":"NL"},"domain_registered":"2023-04-25","domain_rank":140567,"first_seen":"2021-02-12 18:39:25","last_seen":"2023-09-07 21:58:47","alert_count":0,"request_count":1,"received_data":368,"sent_data":852,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww1.mflixer.xyz","ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":5054,"sent_data":1178,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-09-07T20:04:14Z","timestamp":1694117054,"ip_dst":{"addr":"Client IP","port":57244,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"82.192.82.227","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"Netherlands","country_code":"NL"},"severity":"medium","alert":"ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)","source":"{\"timestamp\":\"2023-09-07T20:04:14.769582+0000\",\"flow_id\":1536896815494499,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"82.192.82.227\",\"src_port\":443,\"dest_ip\":\"10.70.215.93\",\"dest_port\":57244,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2025194,\"rev\":3,\"signature\":\"ET HUNTING Observed Let's Encrypt Certificate for Suspicious TLD (.xyz)\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2018_01_09\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Minor\"],\"updated_at\":[\"2020_09_16\"]}},\"tls\":{\"subject\":\"CN=mflixer.xyz\",\"issuerdn\":\"C=US, O=Let's Encrypt, CN=R3\",\"serial\":\"04:00:72:25:04:75:25:46:29:E8:F6:F1:D7:A5:6B:55:04:7B\",\"fingerprint\":\"39:6f:27:e0:af:8d:de:5b:69:d5:0e:5f:6d:6c:30:ef:c2:2f:17:63\",\"sni\":\"mflixer.xyz\",\"version\":\"TLS 1.2\",\"notbefore\":\"2023-07-10T09:20:48\",\"notafter\":\"2023-10-08T09:20:47\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"c4b2785a87896e19d37eee932070cb22\",\"string\":\"771,49199,0-65281-11-16\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":7,\"bytes_toserver\":1041,\"bytes_toclient\":4863,\"start\":\"2023-09-07T20:04:14.685411+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"ww1.mflixer.xyz/","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"57a8b25a1882639d63381cbbe3f43ca6","sha1":"94bf8a91ae3b7cd4a880d2433b5d3ea3d95d585c","sha256":"77af6888e0c659ce11d0bfa70289ef354899a1efb65f809c850d8c87748d55ad","sha512":"7203e58b151566088c165557cd21515d18afdeabfe0b8a48626dadc9e2e18ad3d922a8f1e360374c8540f3bda6c2e718e014bc70ab9d526958f88ddf493c01b6","ssdeep":"","tlshash":"513151d832d4f8ac434759ed042f245af26b1d7601bde5c1e394d4e27c684ae80aae76","size":1579,"data":"","first_seen":"2023-04-05T05:00:26Z","last_seen":"2024-10-11T09:17:02.619094Z","times_seen":3041,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.mflixer.xyz/px.js?ch=1\u0026abp=1","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","size":476,"data":"","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.mflixer.xyz/","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.e436491b.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"e983aacbec26b70d00af658cfe17bc81","sha1":"e7e3d106aa731733e471f2f63ca74b492a98bd2d","sha256":"5a3c09e99565941cdca97f210a8955db899655966e4358402f59c16df5da4127","sha512":"cbec22ef4d38558b0e83fdec020a632a9e03c878f81c0af86c5b64b942aaefa0accddaf2b67ade431cba8012f761c39828a4f41ab2e63c729466aaf7323c87b4","ssdeep":"96:ZxGxQUcJc4w7Ei00YW4H/qXGVB2TqP4JTPgQ4X3Lhv3GhSeeaV:ZxGxF4iS2+P4JUHLhOMeee","tlshash":"9da194eb72c270b0139911d8702f390bb17fe56ee999c4e2e1b386c54d7a4e744e291c","size":5070,"data":"","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1012,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f370e940d469034739e01049b36df68","sha1":"ddd9690104e3fbf8e10c379f305f9cca01bbcc2f","sha256":"8d20720fec6657fc8b97f8d469b3d9631fb8ed8b71540e8f214cb651b8ad4a2a","sha512":"debf4a27ec3ec909e61fc4882c765d6230499990c56b1b1a6effa6168ea4817d30b7f2129a00c1d986d2e1fea7fcb6939d31acb9dd446a250be44182a3708609","ssdeep":"1536:hUKWMn+h/3uPyXTjX5ZX+wffrToF4zQAc7hsoR436AWZYf+jzOsg5PU7MNgCnIXM:ju3FpCAcVR436AW+f2O7GZ7ZmIPC","tlshash":"9be36d9977613422636390b4603f158fb23af959e84885f8b198d8e47cb8dac1277f7c","size":151570,"data":"","first_seen":"2023-09-07T10:10:14Z","last_seen":"2023-09-07T22:04:40Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/0.a16f62c5.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ec748bdd8fb4ec8bdc857ded25621bd","sha1":"f0442ff68df1bff4e54965ddace5e95be70ca4c6","sha256":"af0cfb6bd03aa508d13ba013ac1aaec1f4ae9de2acdbc1ecd74e8beff11fc909","sha512":"1ffe33bdd3780ffe28094bc5b3a88b6373dd6df5e3762e2aabacfe97769143f7fec05ecf8a0ef00302c90ee65b4d7f22f4c6fb47fb5bae402de136f350da13e5","ssdeep":"3072:tvvFN3NpnQ2oY8JGJgj3vy8cs5nHmAWSBjxWdQ31xKqt96LzeT/FH9Sh+IJnOfW1:ZvQGajNHqDoXtIJnOhUxhcdX8J","tlshash":"1c941bc979c1f0a217f321f5006f140bb37e6a1aa80c8550e255e9e5bcbe85e523bf6d","size":434565,"data":"","first_seen":"2023-08-17T22:55:11Z","last_seen":"2023-10-04T03:42:18Z","times_seen":2539,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/1.6a1b7d66.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"f4724ed88488d2383ce0667599d274d3","sha1":"a90fd620d869a4c8e3b4ee1ad1df26e4412f07f7","sha256":"26888945178aef666023f55465c4ff2b7697d8cab6f04a3088cf6475a66606b8","sha512":"dff9c413ae2296b42650f033a69bf3c90cde4983acf80c45ce4d6932ab7832176a748782902c629c13861e8a2a5aa0cef0452d620dbcb79e6a4a21ef72483073","ssdeep":"6144:UhWNnQYntQYn1uDUk4f0WTI4WY+MiqFYVb86T8:lNnQYntQYn1uDUk4f0WTI4WY+MiqFkb0","tlshash":"f644e6dea7e170bc4696d2decc36aedeb598de40d214ca76dfbe868bc40c0149427748","size":271099,"data":"","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mflixer.xyz/xmlrpc.php%22,%22https:/lametino.it/xmlrpc.php%22,%22https:/parisgid.ru/xmlrpc.php%22,%22https:/golfblueheron.com/xmlrpc.php%22,%22https:/foodtools.com/xmlrpc.php%22,%22https:/brasilflix.com/xmlrpc.php%22,%22https:/xn----ymcbamd3cl9knaefb5aujyl.com/xmlrpc.php%22,%22https:/demo16.easy-web24.de/xmlrpc.php%22,%22https:/birdwatchinghq.com/xmlrpc.php%22,%22https:/dchairspa.pl/xmlrpc.php","fqdn":"mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"82.192.82.227","port":443,"asn":60781,"as":"LeaseWeb Netherlands B.V.","country":"Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-07T20:04:14.690Z","timestamp":1694117054690,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"mflixer.xyz","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 10 Jul 2023 09:20:48 GMT","end":"Sun, 08 Oct 2023 09:20:47 GMT"},"fingerprint":{"sha1":"39:6F:27:E0:AF:8D:DE:5B:69:D5:0E:5F:6D:6C:30:EF:C2:2F:17:63","sha256":"E5:0E:B4:50:5F:AC:66:10:8E:04:B7:68:61:97:AD:5B:CB:72:AB:1F:8E:4F:FE:AD:45:C1:58:46:31:64:51:88"}}},"request":{"raw":"GET /xmlrpc.php%22,%22https:/lametino.it/xmlrpc.php%22,%22https:/parisgid.ru/xmlrpc.php%22,%22https:/golfblueheron.com/xmlrpc.php%22,%22https:/foodtools.com/xmlrpc.php%22,%22https:/brasilflix.com/xmlrpc.php%22,%22https:/xn----ymcbamd3cl9knaefb5aujyl.com/xmlrpc.php%22,%22https:/demo16.easy-web24.de/xmlrpc.php%22,%22https:/birdwatchinghq.com/xmlrpc.php%22,%22https:/dchairspa.pl/xmlrpc.php HTTP/1.1\r\nHost: mflixer.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncache-control: max-age=0, private, must-revalidate\r\ncontent-length: 11\r\ndate: Thu, 07 Sep 2023 20:04:16 GMT\r\nlocation: http://ww1.mflixer.xyz\r\nserver: Cowboy\r\nset-cookie: sid=b838fa40-4db9-11ee-887b-457915680780; path=/; domain=.mflixer.xyz; expires=Tue, 25 Sep 2091 23:18:23 GMT; max-age=2147483647; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":11,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"32682312d17c7cbf18e73594f5570319","sha1":"60e22121bdd0bc71cdb2bae2a3aa577006b2eae9","sha256":"e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47","sha512":"68337debb9cd659cece621af582ae2bc4b56b9cf06b26c45f4d9eb8beb91d3f36bead287218b5aa2bb4853a1cf1a12017ca57318d7e12f489884fdc6b261dfc1","ssdeep":"","tlshash":"3550000030c0300c0000000c0000030003000000000c033f0c3003c00c000000000003","first_seen":"2023-04-05T04:09:22Z","last_seen":"2025-03-02T06:14:56.641448Z","times_seen":15034,"resource_available":false,"data":null}},"time_used":2209,"timings":{"blocked":249,"dns":0,"connect":22,"send":0,"wait":1706,"receive":0,"ssl":229},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.mflixer.xyz/","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-07T20:04:16.657Z","timestamp":1694117056657,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww1.mflixer.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Thu, 07 Sep 2023 20:04:16 GMT\r\nContent-Type: text/html\r\nContent-Length: 2930\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-b72\"\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_FRWq2MudK6hfbQHW/ZmiHFOmdnthgbaKCpysS3nac+kevrGFMKp8ILnqVnNcmenUwwYci1RIhnVdoPWpUCtL5w\r\nCache-Control: no-cache\r\nX-Content-Type-Options: nosniff\r\nSet-Cookie: caf_ipaddr=10.116.88.77;Path=/;Max-Age=86400;\ncountry=;Path=/;Max-Age=86400;\ncity=\"\";Path=/;Max-Age=86400;\nexpiry_partner=;Path=/;Max-Age=86400;\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2930,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (2930), with no line terminators","md5":"a6c453e4d67f693374671e2ac1c10fc9","sha1":"e767f216bf1062169f6b5d6f10a0e5bc271ccff7","sha256":"9c500e8aa5fc9f5a8c6cc34b8e39c0495c857e23fb83ee4492feb6347fc854cc","sha512":"a071c11424c9c70d8223409c1947c8eaea8e04787ec2d4605076872fe927ba9ff0d22a3149528198fe2c6e4d5da886b721985dc2a9528b596263d6cf5ba93b9e","ssdeep":"","tlshash":"2051e6d67dc5f9a88b4149e8403bf82ce1599929c938dcc0d3d0c0bbb8983de4d6ae74","first_seen":"2023-08-18T02:13:58Z","last_seen":"2023-09-29T16:42:04Z","times_seen":576,"resource_available":false,"data":null}},"time_used":395,"timings":{"blocked":99,"dns":95,"connect":4,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-07T20:04:17.21584734Z","timestamp":1694117057215,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 07 Sep 2023 20:04:17 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"9dfd9b853af6c4045b32cf75ccd381b3","sha1":"ed0fd094a3d1ef3873f956ad29fe0fb6e563ac37","sha256":"6761332e50b11c5a824c918a54219a41e4704408cb7fb790ad6a1358b8640716","sha512":"524967e5092f353d4a03cd7059a06c7458c2c28b8248172bce736b3583d8ce409a821f445a770b44e761590a473afea46b78ae38304898b2c8528b3f2ca28a35","ssdeep":"","tlshash":"fdf054665cb00c13d8280b590378da1c414571ab26640ddd1d5ce3ce0f1d1dab31521a","first_seen":"2023-09-07T00:04:47Z","last_seen":"2023-09-08T11:06:22Z","times_seen":559,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/css/1.b30f9100.chunk.css","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.161Z","timestamp":1694117057161,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/css/1.b30f9100.chunk.css HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: fN/am+41KN0b1B4SQJoPgImZVTqy5j8H9rCaOq8u1gP3b/llqMgmVzK8+412sjZXm5S00PYsxxw=\r\nx-amz-request-id: NV8TDBWHDC2XWERK\r\nlast-modified: Thu, 17 Aug 2023 20:28:12 GMT\r\netag: \"cde6ba410180d713de07be87f34e22aa\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ge.y1aNZuz8uRo0f8sQf3wi8vt4jO3mP\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Fri, 06 Sep 2024 20:04:17 GMT\r\ndate: Thu, 07 Sep 2023 20:04:17 GMT\r\ncontent-length: 175\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"cde6ba410180d713de07be87f34e22aa","sha1":"2ac17cbe65ee9b9cf414e50682f43e021cfd6287","sha256":"bebee8c1fae5a7aec3aa03100456f6800108621adcd1f0c1f44cf561ef8d160f","sha512":"bef59abcd07b257bd6775d7422b8a20d605c6ac23098d37a9e5043a93df68842fd571085a8ac8c3298bd3985fee6e6c3531058cd8395047e8049a1ee3fb45bb7","ssdeep":"","tlshash":"36c022bba4972869e0368e084a2009885070044980895224b0076a6442b24232a12a04","first_seen":"2023-08-10T01:43:34Z","last_seen":"2023-10-04T20:36:38Z","times_seen":2641,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":65,"dns":52,"connect":3,"send":0,"wait":9,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.e436491b.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.165Z","timestamp":1694117057165,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/main.e436491b.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: bCB7q+mC/X+BydVWnVzeiC0i5FHw8Xn1Z0w6myMb2CedgrMV7wOp4KF6WLuEsxLACjZBWZpWNWk=\r\nx-amz-request-id: SBFMP1N6PV9P08K4\r\nlast-modified: Thu, 17 Aug 2023 20:28:08 GMT\r\netag: \"e983aacbec26b70d00af658cfe17bc81\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: W3E5iaK..P8HM5OQdketw0EzF8zE2XnV\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Fri, 06 Sep 2024 20:04:17 GMT\r\ndate: Thu, 07 Sep 2023 20:04:17 GMT\r\ncontent-length: 1749\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1749,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5022)","md5":"e983aacbec26b70d00af658cfe17bc81","sha1":"e7e3d106aa731733e471f2f63ca74b492a98bd2d","sha256":"5a3c09e99565941cdca97f210a8955db899655966e4358402f59c16df5da4127","sha512":"cbec22ef4d38558b0e83fdec020a632a9e03c878f81c0af86c5b64b942aaefa0accddaf2b67ade431cba8012f761c39828a4f41ab2e63c729466aaf7323c87b4","ssdeep":"96:ZxGxQUcJc4w7Ei00YW4H/qXGVB2TqP4JTPgQ4X3Lhv3GhSeeaV:ZxGxF4iS2+P4JUHLhOMeee","tlshash":"9da194eb72c270b0139911d8702f390bb17fe56ee999c4e2e1b386c54d7a4e744e291c","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1012,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":71,"dns":50,"connect":3,"send":0,"wait":16,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/1.6a1b7d66.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.163Z","timestamp":1694117057163,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/1.6a1b7d66.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: QJk9ZstdDBoWHzHZl/6nmvEqGwjxExiwX+dqDX4eCUdbNty+JtxhYDQCGVN8hYoRtrSBKl88ky0=\r\nx-amz-request-id: H1ZC38B181SHRZ37\r\nlast-modified: Thu, 17 Aug 2023 20:28:08 GMT\r\netag: \"f4724ed88488d2383ce0667599d274d3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: EfGdkf2vRdRCKwJyfRSvzNesqHi1pERi\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Fri, 06 Sep 2024 20:04:17 GMT\r\ndate: Thu, 07 Sep 2023 20:04:17 GMT\r\ncontent-length: 57412\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":57412,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"f4724ed88488d2383ce0667599d274d3","sha1":"a90fd620d869a4c8e3b4ee1ad1df26e4412f07f7","sha256":"26888945178aef666023f55465c4ff2b7697d8cab6f04a3088cf6475a66606b8","sha512":"dff9c413ae2296b42650f033a69bf3c90cde4983acf80c45ce4d6932ab7832176a748782902c629c13861e8a2a5aa0cef0452d620dbcb79e6a4a21ef72483073","ssdeep":"6144:UhWNnQYntQYn1uDUk4f0WTI4WY+MiqFYVb86T8:lNnQYntQYn1uDUk4f0WTI4WY+MiqFkb0","tlshash":"f644e6dea7e170bc4696d2decc36aedeb598de40d214ca76dfbe868bc40c0149427748","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1071,"resource_available":true,"data":null}},"time_used":196,"timings":{"blocked":89,"dns":51,"connect":1,"send":0,"wait":5,"receive":3,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/0.a16f62c5.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.162Z","timestamp":1694117057162,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/0.a16f62c5.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: WX0e4OiHwl84McMRMlYC1Ox4QENw+Tn632eqDMgSTaVdy4Y96fuD7nAcURYjloJCH6pdIXwjU2k=\r\nx-amz-request-id: RAFYKP8K3P7C6NKZ\r\nlast-modified: Thu, 17 Aug 2023 20:28:07 GMT\r\netag: \"0ec748bdd8fb4ec8bdc857ded25621bd\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: YngpOzUh8G0W8juPYvQRE99rWwAaf9ld\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Fri, 06 Sep 2024 20:04:17 GMT\r\ndate: Thu, 07 Sep 2023 20:04:17 GMT\r\ncontent-length: 137571\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":137571,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65462)","md5":"0ec748bdd8fb4ec8bdc857ded25621bd","sha1":"f0442ff68df1bff4e54965ddace5e95be70ca4c6","sha256":"af0cfb6bd03aa508d13ba013ac1aaec1f4ae9de2acdbc1ecd74e8beff11fc909","sha512":"1ffe33bdd3780ffe28094bc5b3a88b6373dd6df5e3762e2aabacfe97769143f7fec05ecf8a0ef00302c90ee65b4d7f22f4c6fb47fb5bae402de136f350da13e5","ssdeep":"3072:tvvFN3NpnQ2oY8JGJgj3vy8cs5nHmAWSBjxWdQ31xKqt96LzeT/FH9Sh+IJnOfW1:ZvQGajNHqDoXtIJnOhUxhcdX8J","tlshash":"1c941bc979c1f0a217f321f5006f140bb37e6a1aa80c8550e255e9e5bcbe85e523bf6d","first_seen":"2023-08-17T22:55:11Z","last_seen":"2023-10-04T03:42:18Z","times_seen":2539,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":89,"dns":51,"connect":3,"send":0,"wait":3,"receive":23,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.mflixer.xyz/px.js?ch=1\u0026abp=1","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"3.33.243.145","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.157Z","timestamp":1694117057157,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=1\u0026abp=1 HTTP/1.1\r\nHost: ww1.mflixer.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nCookie: caf_ipaddr=10.116.88.77; country=; city=\"\"; expiry_partner=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Thu, 07 Sep 2023 20:04:17 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":127,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":127,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.mflixer.xyz/px.js?ch=2\u0026abp=1","fqdn":"ww1.mflixer.xyz","domain":"mflixer.xyz","tld":"xyz"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.160Z","timestamp":1694117057160,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=2\u0026abp=1 HTTP/1.1\r\nHost: ww1.mflixer.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nCookie: caf_ipaddr=10.116.88.77; country=; city=\"\"; expiry_partner=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Thu, 07 Sep 2023 20:04:17 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":201,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-07T20:04:17.431105716Z","timestamp":1694117057431,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 07 Sep 2023 20:04:17 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"b4373a68ec6cfc862e29ebe4e5ce1573","sha1":"2a2a2e8babfa8e7ef88c110f551ba2baa698cd87","sha256":"e22a7ee2fcf6843ccb2b972185ba0d049155f7cb3e10b3e0b1df78d9277142e1","sha512":"96176c3e5849779e768ec35a1df1ced025073d1cdb36acfa36414ad9bee17109454c47c6d095060af249e7d7b170a56d70713b81ec19b49ea9302ef563b88c78","ssdeep":"","tlshash":"d6f0d427d470c461c8591f585bb0f234f161352d1d2d43037b74518813096e9b3cd334","first_seen":"2023-09-07T00:04:47Z","last_seen":"2023-09-08T11:06:09Z","times_seen":599,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.mflixer.xyz/","date":"2023-09-07T20:04:17.155Z","timestamp":1694117057155,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 07 Aug 2023 12:22:44 GMT","end":"Mon, 30 Oct 2023 12:22:43 GMT"},"fingerprint":{"sha1":"9A:F7:68:99:17:95:7D:AE:08:51:0E:97:CE:A7:C3:18:3E:FB:E0:89","sha256":"D1:B6:90:33:A1:21:23:F9:17:46:D6:BA:A5:C2:39:EE:3F:61:50:95:B0:3B:76:04:0A:8C:7B:65:DD:BB:63:65"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1 HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.mflixer.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Thu, 07 Sep 2023 20:04:17 GMT\r\nexpires: Thu, 07 Sep 2023 20:04:17 GMT\r\ncache-control: private, max-age=3600\r\netag: \"17996971338595722501\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://afs.googlesyndication.com\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":151570,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (2067)","md5":"2f370e940d469034739e01049b36df68","sha1":"ddd9690104e3fbf8e10c379f305f9cca01bbcc2f","sha256":"8d20720fec6657fc8b97f8d469b3d9631fb8ed8b71540e8f214cb651b8ad4a2a","sha512":"debf4a27ec3ec909e61fc4882c765d6230499990c56b1b1a6effa6168ea4817d30b7f2129a00c1d986d2e1fea7fcb6939d31acb9dd446a250be44182a3708609","ssdeep":"1536:hUKWMn+h/3uPyXTjX5ZX+wffrToF4zQAc7hsoR436AWZYf+jzOsg5PU7MNgCnIXM:ju3FpCAcVR436AW+f2O7GZ7ZmIPC","tlshash":"9be36d9977613422636390b4603f158fb23af959e84885f8b198d8e47cb8dac1277f7c","first_seen":"2023-09-07T10:10:14Z","last_seen":"2023-09-07T22:04:40Z","times_seen":2,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":65,"dns":1,"connect":8,"send":0,"wait":31,"receive":27,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}