{"report_id":"a189b7e8-2ab6-4a5e-a34e-e59af377604e","version":6,"status":"done","tags":[],"date":"2025-07-12T02:29:32Z","url":{"schema":"http","addr":"mail.ups-document.zip","fqdn":"mail.ups-document.zip","domain":"ups-document.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"activitysearch.zip/","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"title":"activitysearch.zip/"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-09-20T02:29:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"activitysearch.zip","ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"2023-05-17","domain_rank":0,"first_seen":"2023-05-20T00:35:00Z","last_seen":"2025-05-29T07:40:17.017704Z","alert_count":0,"request_count":9,"received_data":3770271,"sent_data":4514,"comment":"","tags":null,"fingerprints":null},{"fqdn":"mail.ups-document.zip","ip":{"addr":"34.206.92.29","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"2023-05-17","domain_rank":0,"first_seen":"2025-05-12T17:10:28.312932Z","last_seen":"2025-05-12T17:10:28.711575Z","alert_count":2,"request_count":2,"received_data":8329,"sent_data":896,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-07-09T15:18:55.375352Z","alert_count":0,"request_count":2,"received_data":324982,"sent_data":862,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-07-12T02:29:10Z","timestamp":1752287350,"ip_dst":{"addr":"34.206.92.29","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.21","port":60214,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO HTTP Request to a *.zip Domain","source":"{\"timestamp\":\"2025-07-12T02:29:10.342456+0000\",\"flow_id\":538416168461294,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":60214,\"dest_ip\":\"34.206.92.29\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2045975,\"rev\":3,\"signature\":\"ET INFO HTTP Request to a *.zip Domain\",\"category\":\"Misc activity\",\"severity\":3,\"source\":{\"ip\":\"34.206.92.29\",\"port\":80},\"target\":{\"ip\":\"172.18.0.21\",\"port\":60214},\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2023_05_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_06_05\"]}},\"http\":{\"hostname\":\"mail.ups-document.zip\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"https://activitysearch.zip/\",\"length\":211},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":678,\"bytes_toclient\":715,\"start\":\"2025-07-12T02:29:10.156654+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"activitysearch.zip/static/3rdparty/jquery-3.6.4.min.js","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0927441ac23b008d64e75ca217ebcc47","sha1":"8dbbd26e18b828223a527d9e1885800ad8dfce7e","sha256":"44b57c8c7b3f73de08c06579ad1305a31a80a29b9f40edf5af8238f0d2f0c79c","sha512":"e7d3b76ee3e12722050704453907a76e493e6463264b18bc73f5d1e67032f054827e2bc4482022922a0545c05d520db24057c96023dfd0c7246697761f55a0c3","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQvu:IeeIygP3fulzhsz8jlvaDioQ47GKf","tlshash":"3193f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","size":89794,"data":"","first_seen":"2023-04-20T11:28:05Z","last_seen":"2026-05-23T05:43:45.106831Z","times_seen":1752,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/materialize/1.0.0/js/materialize.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"87d84bf8b4cc051c16092d27b1a7d9b3","sha1":"c8b4c65651921d888cf5f27430dfe2ad190d35bf","sha256":"53f7070cc4c81c278c72f7a106fd71434e766cf49b26d6ee8b0e1003d7132b3d","sha512":"3625aa6b6adc7879cddd9e63ea6480bdbc30837b62c1537188041a6923125e74510e1e42da693ffac290470f2a8d5d6f3789dff222b66b46f4e3c3e71dbcb1f9","ssdeep":"3072:SJu60GNnYpmH0I5zSMIonlnqA9kSy1UQp0kD5tgtPlF7zzc0mwEh7PnR:SbGcZYEvzc0mwEh7PnR","tlshash":"1b04e8d9b242763145e3e1a9426f260aa23721a45087c0dcb43eeddd6fbcd4821b7b7d","size":181109,"data":"","first_seen":"2023-03-07T12:08:24Z","last_seen":"2026-05-23T06:10:53.000845Z","times_seen":1799,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/3rdparty/htmx.min.js","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"31f0c0776c6825f9abd50fff644d1643","sha1":"ee6a95ef2c0d74174e68739e391c088f96d0f95b","sha256":"97df3adfbf23b873d9a3a80f7143d801a32604ba29de9a33f21a92a171076aa8","sha512":"fb0d56612831cd8a50b980453cabac539fe4ecc1dab7d480ecea9eba052899d08290e47dade134a418003c3a00c58476750c7ed7efb77aeefa5addc4f376e635","ssdeep":"768:4ZWRFBtCkxFHpLRGQF6FB0c0PwbFkyI4ekX63Gx:4oBwcpG6ceyIBC","tlshash":"b713d4c633c5717b87ef2578999f1247b23448d3ad4ec111e052f8883db8e95ca27ea9","size":42580,"data":"","first_seen":"2023-07-28T18:01:39Z","last_seen":"2026-05-14T20:33:22.850895Z","times_seen":84,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c264043b52e479b27fbb6a8b867c631e","sha1":"2e4802bf56013a42dcd91aec334dc23a787b823e","sha256":"0e2acf0fe33ac398ba47135106d6088ab771196061b74de40e1cc04eace34b54","sha512":"9f00755a44d8b818a4e7944108127c713cac8a3137936b25b2eca5a348416bc409079a596f784084dea635fcaedae0ad352e709a7982e130a088236b19731e88","ssdeep":"48:swK13OkpYY4jpptOfQInWvuvX50zAUjec4kI:swK13OkAHO4Nuvp0O/","tlshash":"e38187251a1eb0ab4763a035bdffd01dfae090539490cb04bf1dc9d09fb5b269a77268","size":4105,"data":"","first_seen":"2025-07-12T02:29:34.304041Z","last_seen":"2025-07-12T02:29:34.304041Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"activitysearch.zip/static/images/image20.png","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/images/image20.png HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"2cae6c-5fbd208c44225\"\r\nAccept-Ranges: bytes\r\nContent-Length: 2928236\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2928236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1722 x 1534, 8-bit/color RGBA, non-interlaced","md5":"eda3c28fa2687dd24a02156807340bb2","sha1":"34cf298542f137f35352ca51a6cbe4b0f9b249c5","sha256":"55825644235ffe759d73ff36f11d1d6f2a19eb799d3c39c29051fb8019a2057d","sha512":"15095097740ec0b67b585be2b276ddaa01b967700477dffa3cc44bdca4e716aec8632f92c7bd0440a7d735b152b61815805f202711434208dbaf6ea4d806bfaa","ssdeep":"49152:yTsRnoYLhlV52p9oAEJqAKGtZ+Oe4i2JsFnnHbE2f/PJDXuAZXrhUrZDzGaHMEhZ:kDYLvV5kAJWKxiDFnHbv3PhnZOF3MiBb","tlshash":"5fd5338ce0e70c45fd603d9d61a52427af6d3dbdb185dbcb3a2d9211ba8344b3729238","first_seen":"2024-12-09T20:11:37.72599Z","last_seen":"2025-07-12T02:29:34.279945Z","times_seen":7,"resource_available":false,"data":null}},"time_used":719,"timings":{"blocked":62,"dns":0,"connect":0,"send":0,"wait":94,"receive":563,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/images/image22.png","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.540Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/images/image22.png HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"28b87-5fbd208c4de65\"\r\nAccept-Ranges: bytes\r\nContent-Length: 166791\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":166791,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1722 x 1534, 8-bit/color RGBA, non-interlaced","md5":"56d6ca4c708c2e305d050571a7b9d08c","sha1":"31b7a2ea4b6d5c9fb99324723736bdf5e10eed28","sha256":"934dfa75850dcfc149c3a418c7793c0dd5e579abf9e662e459ed3afe16788dbe","sha512":"50b6ad54a2ff76644a25c2dc15103b672ced11550558b7e997791c624061c6ece9b7b4b65fb9528241d89f7aafeb6594e647c9fd7b49b1f757eeba42dd850b8a","ssdeep":"3072:+49jWDDmErrw9acTX/Viu6ibOKWMu7kzplax:+41+mErrwjLVP6d7iU","tlshash":"6ef36a06db412077b51595a07793a0a798a61d733212ce1e1be3756f6f8bfb8ee30c90","first_seen":"2023-10-27T12:50:28Z","last_seen":"2026-04-16T17:42:18.858478Z","times_seen":11,"resource_available":false,"data":null}},"time_used":946,"timings":{"blocked":216,"dns":2,"connect":97,"send":0,"wait":94,"receive":410,"ssl":122},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mail.ups-document.zip/","fqdn":"mail.ups-document.zip","domain":"ups-document.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-07-12T02:29:10.157Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: mail.ups-document.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Sat, 12 Jul 2025 02:29:10 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLocation: https://activitysearch.zip/\r\nContent-Length: 211\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":8031,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-23T17:07:55.698935Z","times_seen":15618608,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":93,"dns":0,"connect":93,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-07-12T02:29:10Z","timestamp":1752287350,"ip_dst":{"addr":"34.206.92.29","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.21","port":60214,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO HTTP Request to a *.zip Domain","source":"{\"timestamp\":\"2025-07-12T02:29:10.342456+0000\",\"flow_id\":538416168461294,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":60214,\"dest_ip\":\"34.206.92.29\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2045975,\"rev\":3,\"signature\":\"ET INFO HTTP Request to a *.zip Domain\",\"category\":\"Misc activity\",\"severity\":3,\"source\":{\"ip\":\"34.206.92.29\",\"port\":80},\"target\":{\"ip\":\"172.18.0.21\",\"port\":60214},\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2023_05_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_06_05\"]}},\"http\":{\"hostname\":\"mail.ups-document.zip\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"https://activitysearch.zip/\",\"length\":211},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":678,\"bytes_toclient\":715,\"start\":\"2025-07-12T02:29:10.156654+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/materialize/1.0.0/css/materialize.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:10.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 22 May 2025 14:38:44 GMT","end":"Wed, 20 Aug 2025 15:38:38 GMT"},"fingerprint":{"sha1":"4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77","sha256":"92:B0:F4:51:5C:E9:3A:03:19:F4:50:36:49:FA:A1:01:1D:F0:A1:91:F7:A3:53:E6:19:AA:C4:FA:3D:C4:31:6E"}}},"request":{"raw":"GET /ajax/libs/materialize/1.0.0/css/materialize.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 12 Jul 2025 02:29:10 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 17475\r\ncf-ray: 95dd1c876b86712b-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03efe-22a11\"\r\nlast-modified: Mon, 04 May 2020 16:12:46 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 518147\r\nexpires: Thu, 02 Jul 2026 02:29:10 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=kHjVnjkgC0h3koD3koipfYa0%2F%2BUq1ZrbYdSiD%2B32sUxkXPBefalIr%2BIhn4%2FMj%2F%2BlZcEIIZhPTuZgURMJnV0K9R7fuDX6iZXzw9gmvjZif9X6rZ1FwXvd116itlPhVMtRnmf1cbou\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":141841,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65352), with CRLF line terminators","md5":"ec1df3ba49973dcb9ff212f052d39483","sha1":"80ae4aa0dba3634dd9bf59586d541d2dd8d8191c","sha256":"3b079a3ff21ceabb15fa5cac7f24b887e2cceac470b8eddeb9361fafa335db88","sha512":"5097c068e94846d751fb43fa0b7294a130c0c554eecb79674972f22ca94760995c494f09ba07bf9a379ac4334c970f4b81e228b60cf914ff1e5103e15f5ab5d0","ssdeep":"768:TclJ0fKv4fHkOemh2q3LE6ACdvIylx9tjKrZeT4h:TclJjv4fHLemh2W/ACxjtE","tlshash":"7dd3b926f18a311aa467c53a52c4b7a9763e4445ef13af7a70533b38c7478ca2163b4f","first_seen":"2023-04-05T13:16:03Z","last_seen":"2026-05-23T06:10:53.058081Z","times_seen":762,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":36,"dns":1,"connect":1,"send":0,"wait":14,"receive":2,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/images/image5.png","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/images/image5.png HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"30d50-5fbd208cb6e15\"\r\nAccept-Ranges: bytes\r\nContent-Length: 200016\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":200016,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1722 x 1534, 8-bit/color RGBA, non-interlaced","md5":"447c3632648be203acbfad2367778bfe","sha1":"e0d0f8c4d2ce67d4861622df52e49c098e01ff3d","sha256":"1ac6409aa9b8376c9d3352062a579ac17ac6eb5fd33705ed2906ce301a89e8e8","sha512":"da4802b22daff15d9256f12327e235ac607db088b79824ad37dc7add3c4dd37e8897de94cf57e4f500b95d5d50fe9e117c36c47adfc38641be7ea3a0979566f7","ssdeep":"3072:+4CKo9nDrCMUbCrvnqhK1bbuvIR0wz+BeniawKxH:+4LkdUbqvYK1P6IawSAiawKH","tlshash":"64146b42cb89a5bb742444a8b65720a359742cb3b615de0e1bd7382f6f07fbcad30d85","first_seen":"2023-10-27T12:50:28Z","last_seen":"2025-07-12T02:29:34.287347Z","times_seen":10,"resource_available":false,"data":null}},"time_used":953,"timings":{"blocked":216,"dns":3,"connect":97,"send":0,"wait":96,"receive":413,"ssl":120},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/3rdparty/jquery-3.6.4.min.js","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:10.904Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/3rdparty/jquery-3.6.4.min.js HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"15ec2-5fbd208cd42d5\"\r\nAccept-Ranges: bytes\r\nContent-Length: 89794\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89794,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"0927441ac23b008d64e75ca217ebcc47","sha1":"8dbbd26e18b828223a527d9e1885800ad8dfce7e","sha256":"44b57c8c7b3f73de08c06579ad1305a31a80a29b9f40edf5af8238f0d2f0c79c","sha512":"e7d3b76ee3e12722050704453907a76e493e6463264b18bc73f5d1e67032f054827e2bc4482022922a0545c05d520db24057c96023dfd0c7246697761f55a0c3","ssdeep":"1536:IjjxXUHunxDjoXEZxkMV4PYDt0zxxf6gP3f8cApoEGOzZTBqUsuy8WnKdXwhLQvu:IeeIygP3fulzhsz8jlvaDioQ47GKf","tlshash":"3193f8ddb2c6702247a770ba007f510bf236199d684d8450f269d8e9bc78a4e827bf7d","first_seen":"2023-04-20T11:28:05Z","last_seen":"2026-05-23T05:43:45.106831Z","times_seen":1752,"resource_available":true,"data":null}},"time_used":681,"timings":{"blocked":195,"dns":2,"connect":93,"send":0,"wait":93,"receive":189,"ssl":105},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/materialize/1.0.0/js/materialize.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:10.914Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 22 May 2025 14:38:44 GMT","end":"Wed, 20 Aug 2025 15:38:38 GMT"},"fingerprint":{"sha1":"4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77","sha256":"92:B0:F4:51:5C:E9:3A:03:19:F4:50:36:49:FA:A1:01:1D:F0:A1:91:F7:A3:53:E6:19:AA:C4:FA:3D:C4:31:6E"}}},"request":{"raw":"GET /ajax/libs/materialize/1.0.0/js/materialize.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 12 Jul 2025 02:29:10 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 36877\r\ncf-ray: 95dd1c876b80712b-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03efe-2c375\"\r\nlast-modified: Mon, 04 May 2020 16:12:46 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 759794\r\nexpires: Thu, 02 Jul 2026 02:29:10 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BW7qgRi0Oe1TGpmuNW5RKwaJCOydyQ%2BPEPkz%2B17MaIvp0ntytD2KDII5ttsnpPnbniMvUWHqmj6I9CSJl08vdOuRyaICNYCHTpmACli89nbO87hExTWHuskAyV7r%2Biy0OvnB2cpB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":181109,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65357)","md5":"87d84bf8b4cc051c16092d27b1a7d9b3","sha1":"c8b4c65651921d888cf5f27430dfe2ad190d35bf","sha256":"53f7070cc4c81c278c72f7a106fd71434e766cf49b26d6ee8b0e1003d7132b3d","sha512":"3625aa6b6adc7879cddd9e63ea6480bdbc30837b62c1537188041a6923125e74510e1e42da693ffac290470f2a8d5d6f3789dff222b66b46f4e3c3e71dbcb1f9","ssdeep":"3072:SJu60GNnYpmH0I5zSMIonlnqA9kSy1UQp0kD5tgtPlF7zzc0mwEh7PnR:SbGcZYEvzc0mwEh7PnR","tlshash":"1b04e8d9b242763145e3e1a9426f260aa23721a45087c0dcb43eeddd6fbcd4821b7b7d","first_seen":"2023-03-07T12:08:24Z","last_seen":"2026-05-23T06:10:53.000845Z","times_seen":1799,"resource_available":true,"data":null}},"time_used":86,"timings":{"blocked":29,"dns":9,"connect":2,"send":0,"wait":16,"receive":2,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/favicon.ico","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.500Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 20:04:59 GMT\r\nETag: \"3c2e-5fbd51609e88a\"\r\nAccept-Ranges: bytes\r\nContent-Length: 15406\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/vnd.microsoft.icon\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15406,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"03a8e4c0a6fd8d110dda4bec02ea0c55","sha1":"2e8facf57c14012701df228f859c386e0b6da388","sha256":"6e2354f7345d9f96612d8531080bcadab5c61e7158586c335a10c7f9ded66dd6","sha512":"3f3810185195b57e1ecf47a6087520205d972ab70bd073b0626524adcc7454f0202526565e9c8a9f824e7ffade344d2390e60c628d4b45f5f31503903c9d623a","ssdeep":"96:akwiwNvLwkwOWC/NmCx+1luDOwX8MHqImPzEVTOYHOXUCExMgleu1/fi0a:LB0LnFrsCxRTs79El5fe","tlshash":"29620c455406350fd2b30f766086e7c4f5937e5be870a7b9d1e871832b321c6b0fa696","first_seen":"2023-07-28T18:01:39Z","last_seen":"2026-04-16T17:42:18.845022Z","times_seen":77,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/images/image11.png","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/images/image11.png HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"29b2a-5fbd208c1d125\"\r\nAccept-Ranges: bytes\r\nContent-Length: 170794\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":170794,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1722 x 1534, 8-bit/color RGBA, non-interlaced","md5":"6bd67d34aa6f966bad6ecfe904b02d59","sha1":"8af2a4ef29a43bb77d297faf594ef3d5ad0ac737","sha256":"c16feed4d6c2b6916c3fb366c81486b9250c09a825f6852cd28d4df929eac4de","sha512":"66035a1c96abf68baf445764a4fa828ac5184add959d1a37ca765f7dcee947cc3f521a01fdb03fdefa713df21b783de1707a22dc820d8716bd7cee69db384e67","ssdeep":"3072:+4XFTjuzcH/iiilycefKKBdufHJeUY93qV9JqjDvU2Ri:+4XFTjGcf9cefHB6JYqVX0Lc","tlshash":"05f3580adb82217b725409a5b78739a395654d3b3406ce1a0be7762f2b43fb4fc30d96","first_seen":"2023-10-27T12:50:35Z","last_seen":"2026-01-29T02:56:20.872134Z","times_seen":12,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":204,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/images/image12.png","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:11.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/images/image12.png HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:11 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"237d5-5fbd208c10dd5\"\r\nAccept-Ranges: bytes\r\nContent-Length: 145365\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":145365,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1722 x 1534, 8-bit/color RGBA, non-interlaced","md5":"10947ff0cdc04d346281b944d400fa3d","sha1":"524c5c3ec206fa0e279cd754fc6859fa728569e0","sha256":"7fa27a39fdeb6a6f4dcbec837a32d8de2c8a8b32097b6f630226e153b8d1fd30","sha512":"69ce8cc1a1f08bae316940d75a250e93a4af0a0142e6b673ce515441e60cd00485975243a9278d987421b385ccbe5d556f3fb29868c5ea3da88ff181b6100ae8","ssdeep":"3072:+4BsuTW9YtgggyfhfYJV3Ouvocm0qzm/p7R:+4BRCytgggytCVrmPAl","tlshash":"f3e3c106cb8222bbb9250499b3932593a5714c777125ef1a0fdb766f1b43fb4ad30ca1","first_seen":"2024-11-02T00:17:07.454024Z","last_seen":"2025-07-12T02:29:34.295184Z","times_seen":5,"resource_available":false,"data":null}},"time_used":1066,"timings":{"blocked":218,"dns":1,"connect":107,"send":0,"wait":111,"receive":497,"ssl":127},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mail.ups-document.zip/","fqdn":"mail.ups-document.zip","domain":"ups-document.zip","tld":"zip"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-07-12T02:29:09.930Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: mail.ups-document.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-23T17:07:55.698935Z","times_seen":15618608,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":0,"dns":10,"connect":94,"send":0,"wait":0,"receive":0,"ssl":98},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-07-12T02:29:10Z","timestamp":1752287350,"ip_dst":{"addr":"34.206.92.29","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.21","port":60214,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO HTTP Request to a *.zip Domain","source":"{\"timestamp\":\"2025-07-12T02:29:10.342456+0000\",\"flow_id\":538416168461294,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.21\",\"src_port\":60214,\"dest_ip\":\"34.206.92.29\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2045975,\"rev\":3,\"signature\":\"ET INFO HTTP Request to a *.zip Domain\",\"category\":\"Misc activity\",\"severity\":3,\"source\":{\"ip\":\"34.206.92.29\",\"port\":80},\"target\":{\"ip\":\"172.18.0.21\",\"port\":60214},\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2023_05_31\"],\"deployment\":[\"SSLDecrypt\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_06_05\"]}},\"http\":{\"hostname\":\"mail.ups-document.zip\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":302,\"redirect\":\"https://activitysearch.zip/\",\"length\":211},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":678,\"bytes_toclient\":715,\"start\":\"2025-07-12T02:29:10.156654+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-07-12T02:29:10.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:10 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nX-Frame-Options: DENY\r\nVary: Cookie\r\nContent-Length: 8031\r\nX-Content-Type-Options: nosniff\r\nReferrer-Policy: same-origin\r\nCross-Origin-Opener-Policy: same-origin\r\nSet-Cookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb; expires=Sat, 11 Jul 2026 02:29:10 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=utf-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":8031,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"a34e4d74ca56fd6634e8eb5106b6e07f","sha1":"75897b727543bc16bc4b14ff787a4ec9db5d8bfb","sha256":"862d3ddb611bc71e255e0aadaac675f11ac8bb5e0f687959a6d8fc01182aa0b8","sha512":"6cb8b959f1666f992f7e44a308592586d23c9ff2841206dccc0d3f84a64e7a5de03293ea5fad86b4fc068ba0abef5e02878dd18beba30691cc97def2cb36a20e","ssdeep":"96:iNjlEf+4JmcwIgxpSx/9ev9YwK13OkAHO4Nuvp0OpM:iNjlEW4J+Ig6xlevmAH9uB02M","tlshash":"7af1cc26199ab1ab4763a03479ffd15dfae080439451cb047f5dcae08fa5e16ce73298","first_seen":"2025-07-12T02:29:34.299115Z","last_seen":"2025-07-12T02:29:34.299115Z","times_seen":1,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":252,"dns":52,"connect":94,"send":0,"wait":96,"receive":2,"ssl":102},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"activitysearch.zip/static/3rdparty/htmx.min.js","fqdn":"activitysearch.zip","domain":"activitysearch.zip","tld":"zip"},"ip":{"addr":"34.206.92.29","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"https://activitysearch.zip/","date":"2025-07-12T02:29:10.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.activitysearch.zip","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Tue, 08 Jul 2025 03:35:16 GMT","end":"Mon, 06 Oct 2025 03:35:15 GMT"},"fingerprint":{"sha1":"49:57:D4:90:D5:C4:9E:10:32:82:49:3E:17:3A:9F:49:79:48:8D:A3","sha256":"30:5D:BA:BF:B1:73:BA:F8:02:92:76:55:D5:FA:3F:42:43:7B:BB:32:C7:C7:E7:AC:37:06:4E:4A:D2:6B:37:2D"}}},"request":{"raw":"GET /static/3rdparty/htmx.min.js HTTP/1.1\r\nHost: activitysearch.zip\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://activitysearch.zip/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: csrftoken=azvVjLLwDvsi2SWpTsCKmiIApg2As4Lb\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 12 Jul 2025 02:29:10 GMT\r\nServer: Apache/2.4.62 (Amazon Linux) OpenSSL/3.2.2 mod_wsgi/4.9.4 Python/3.9\r\nLast-Modified: Tue, 16 May 2023 16:26:32 GMT\r\nETag: \"a654-5fbd208cd90f5\"\r\nAccept-Ranges: bytes\r\nContent-Length: 42580\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42580,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (42580), with no line terminators","md5":"31f0c0776c6825f9abd50fff644d1643","sha1":"ee6a95ef2c0d74174e68739e391c088f96d0f95b","sha256":"97df3adfbf23b873d9a3a80f7143d801a32604ba29de9a33f21a92a171076aa8","sha512":"fb0d56612831cd8a50b980453cabac539fe4ecc1dab7d480ecea9eba052899d08290e47dade134a418003c3a00c58476750c7ed7efb77aeefa5addc4f376e635","ssdeep":"768:4ZWRFBtCkxFHpLRGQF6FB0c0PwbFkyI4ekX63Gx:4oBwcpG6ceyIBC","tlshash":"b713d4c633c5717b87ef2578999f1247b23448d3ad4ec111e052f8883db8e95ca27ea9","first_seen":"2023-07-28T18:01:39Z","last_seen":"2026-05-14T20:33:22.850895Z","times_seen":84,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":98,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}