{"report_id":"a6e2f9f3-8cac-43ed-b420-ac9e017d9bd6","version":6,"status":"done","tags":[],"date":"2024-08-17T10:55:21Z","url":{"schema":"http","addr":"111.205.90.196:10006/login","fqdn":"111.205.90.196","domain":"111.205.90.196","tld":""},"ip":{"addr":"111.205.90.196","port":0,"asn":4808,"as":"China Unicom Beijing Province Network","country":"China","country_code":"CN"},"final":{"url":{"schema":"http","addr":"111.205.90.196:10006/login","fqdn":"111.205.90.196:10006","domain":"111.205.90.196","tld":"196:10006"},"title":"400 The plain HTTP request was sent to HTTPS port"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T12:59:48Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":3,"received_data":2664,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":5,"received_data":4439,"sent_data":1635,"comment":"","tags":null,"fingerprints":null},{"fqdn":"111.205.90.196:10006","ip":{"addr":"111.205.90.196","port":0,"asn":4808,"as":"China Unicom Beijing Province Network","country":"China","country_code":"CN"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":2,"request_count":2,"received_data":810,"sent_data":752,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-17","alert":"Sinkholed","trigger":"111.205.90.196","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-17","alert":"Sinkholed","trigger":"111.205.90.196","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:55.547382114Z","timestamp":1723892095547,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"B6AA8B353B34CD929B75A9BAF0F9953435F07D0118004F1E0BF72E5E15498FE4\"\r\nLast-Modified: Fri, 16 Aug 2024 06:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13429\r\nExpires: Sat, 17 Aug 2024 14:38:44 GMT\r\nDate: Sat, 17 Aug 2024 10:54:55 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"2df91286f49e58e16a376311a3bd4a11","sha1":"f91a1585d976cf80ae4702b607130dc84e095e81","sha256":"b6aa8b353b34cd929b75a9baf0f9953435f07d0118004f1e0bf72e5e15498fe4","sha512":"40c6bc2b47c40e3c0aaeb44f348e0cebc6fc31627e7e7d5bc90506d6564c268268912f190d85b746cde1007adabc72525bb50a688117eec33fe654d4204167f6","ssdeep":"","tlshash":"5af005a2036db5412bb5a9147d7889157e308ad4281515b37ca483dd6c91fac85c4c0c","first_seen":"2024-08-16T11:42:24Z","last_seen":"2024-08-19T13:09:05.870915Z","times_seen":13158,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:55.548719327Z","timestamp":1723892095548,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F9701BF0083B06F4A573774D1A4DD491236216BC08F1006A94CE79144DF70A21\"\r\nLast-Modified: Sat, 17 Aug 2024 00:55:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3023\r\nExpires: Sat, 17 Aug 2024 11:45:18 GMT\r\nDate: Sat, 17 Aug 2024 10:54:55 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"219f59137337a0ee601729cab5ec83f6","sha1":"85f2e3496820405559fd526b44b9a915e0009a4f","sha256":"f9701bf0083b06f4a573774d1a4dd491236216bc08f1006a94ce79144df70a21","sha512":"48cb90218f551a6614c443e782e85b534b376bba08b83a7695a2e18760f0b03be107ea85844f800c0ac2461d1168ddcaa9f87af0f55638f4a5f865e68bbf9909","ssdeep":"","tlshash":"c9f0051005de79446b1596364cafe2b30561e8cf3ad62349ea9013f4e426bfca14800c","first_seen":"2024-08-17T07:45:32Z","last_seen":"2024-08-21T10:22:51.029727Z","times_seen":36548,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:55.929935331Z","timestamp":1723892095929,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9EF3DAB56215A67804DB0E12D33772A1902F5914B788530717712902A294BCB5\"\r\nLast-Modified: Wed, 14 Aug 2024 21:59:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10497\r\nExpires: Sat, 17 Aug 2024 13:49:52 GMT\r\nDate: Sat, 17 Aug 2024 10:54:55 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"4d209e16679910b467c26590a0073236","sha1":"ddd59fa6902b498e9c0cfb22e342757f954789d0","sha256":"9ef3dab56215a67804db0e12d33772a1902f5914b788530717712902a294bcb5","sha512":"c51db05572ffd286971584fdb91cb70c2dbbca943460845163bbe781c5282225dfccb7121773c517ad3185efeab960a2adcdf13a765219d4843f808a51bc77fd","ssdeep":"","tlshash":"d2f005de12f0b550dab5490569e9e0156c50c5ec3b0541c5738016da16a07fc9f8150c","first_seen":"2024-08-15T00:00:44Z","last_seen":"2024-08-19T13:17:36.886871Z","times_seen":49254,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:56.305844557Z","timestamp":1723892096305,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9D811DDDBB6915131E8F2A84AB84709F47697EBDF51B0FE839150F95C924C0AE\"\r\nLast-Modified: Fri, 16 Aug 2024 06:57:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10103\r\nExpires: Sat, 17 Aug 2024 13:43:19 GMT\r\nDate: Sat, 17 Aug 2024 10:54:56 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"2ae189346fbf1c4db44f325fbc27cdd1","sha1":"3bfaab5d83d905673ff9ca4dd91d7c2cb34ddb76","sha256":"9d811dddbb6915131e8f2a84ab84709f47697ebdf51b0fe839150f95c924c0ae","sha512":"0174892d1ca389e08ef8dd1970661b658f7a971d068a617eaeda9901979e7ec5963a9685c84a436baa6a32a63796b8e2a9c5a64f6bbe43eaeb6e473eb6e5e05e","ssdeep":"","tlshash":"b5f005d606e7fa60b2734d28d695d5721d207ebc342515d6156043f4a590ff84e80ce8","first_seen":"2024-08-16T18:19:54Z","last_seen":"2024-08-19T13:05:48.867123Z","times_seen":7228,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"111.205.90.196:10006/login","fqdn":"111.205.90.196:10006","domain":"111.205.90.196","tld":"196:10006"},"ip":{"addr":"111.205.90.196","port":0,"asn":4808,"as":"China Unicom Beijing Province Network","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:56.610123895Z","timestamp":1723892096610,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /login HTTP/1.1\r\nHost: 111.205.90.196:10006\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 400 Bad Request\r\nServer: nginx/1.22.0\r\nDate: Sat, 17 Aug 2024 10:54:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 255\r\nConnection: close\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":255,"size_decoded":255,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3a3814b0940b7d87f1f66fe86d51bdb7","sha1":"f56a2a1db4b4b5b68efb4942c59a1814060ab286","sha256":"ba8d01fd121dde56d29f53cffad3ff631bab620326d80690e617de2c6169bb54","sha512":"85784a9437c1705f2d68b8db420a2681e67e6ffb08f39b98c445c7a983be6a79a10de3c7754ec3a6dada79d4e73781028ee31bb5526ddf877db8d927abeffe31","ssdeep":"","tlshash":"52d05ea629c23d19806363386ac7b550e0f29271aaed5aa58481cb8724cb04e4bc6fd1","first_seen":"2023-08-29T14:40:39Z","last_seen":"2026-01-15T17:43:10.162346Z","times_seen":138,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-17","alert":"Sinkholed","trigger":"111.205.90.196","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"111.205.90.196:10006/favicon.ico","fqdn":"111.205.90.196:10006","domain":"111.205.90.196","tld":"196:10006"},"ip":{"addr":"111.205.90.196","port":10006,"asn":4808,"as":"China Unicom Beijing Province Network","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://111.205.90.196:10006/login","date":"2024-08-17T10:54:56.768Z","timestamp":1723892096768,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 111.205.90.196:10006\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://111.205.90.196:10006/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 400 Bad Request\r\nServer: nginx/1.22.0\r\nDate: Sat, 17 Aug 2024 10:54:56 GMT\r\nContent-Type: text/html\r\nContent-Length: 255\r\nConnection: close\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":null,"data":{"size":255,"size_decoded":255,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"3a3814b0940b7d87f1f66fe86d51bdb7","sha1":"f56a2a1db4b4b5b68efb4942c59a1814060ab286","sha256":"ba8d01fd121dde56d29f53cffad3ff631bab620326d80690e617de2c6169bb54","sha512":"85784a9437c1705f2d68b8db420a2681e67e6ffb08f39b98c445c7a983be6a79a10de3c7754ec3a6dada79d4e73781028ee31bb5526ddf877db8d927abeffe31","ssdeep":"","tlshash":"52d05ea629c23d19806363386ac7b550e0f29271aaed5aa58481cb8724cb04e4bc6fd1","first_seen":"2023-08-29T14:40:39Z","last_seen":"2026-01-15T17:43:10.162346Z","times_seen":138,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-08-17","alert":"Sinkholed","trigger":"111.205.90.196","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:58.16292481Z","timestamp":1723892098162,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15844\r\nExpires: Sat, 17 Aug 2024 15:19:02 GMT\r\nDate: Sat, 17 Aug 2024 10:54:58 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:58.168112193Z","timestamp":1723892098168,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15844\r\nExpires: Sat, 17 Aug 2024 15:19:02 GMT\r\nDate: Sat, 17 Aug 2024 10:54:58 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:58.169859666Z","timestamp":1723892098169,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15844\r\nExpires: Sat, 17 Aug 2024 15:19:02 GMT\r\nDate: Sat, 17 Aug 2024 10:54:58 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-17T10:54:58.171376664Z","timestamp":1723892098171,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15844\r\nExpires: Sat, 17 Aug 2024 15:19:02 GMT\r\nDate: Sat, 17 Aug 2024 10:54:58 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}