{"report_id":"b95a6e81-d887-4220-a2c4-32fc1d067782","version":6,"status":"done","tags":[],"date":"2023-12-04T05:45:13Z","url":{"schema":"http","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":0,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"final":{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"title":"WARNING"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:15:01Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"notix.io","ip":{"addr":"139.45.240.92","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2020-08-20","domain_rank":14765,"first_seen":"2020-08-20 15:14:00","last_seen":"2023-12-03 05:24:45","alert_count":1,"request_count":2,"received_data":145937,"sent_data":1000,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-12-03 06:08:10","alert_count":0,"request_count":1,"received_data":7456,"sent_data":499,"comment":"","tags":null,"fingerprints":null},{"fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":9,"received_data":67872,"sent_data":4919,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2023-12-03 05:48:43","alert_count":0,"request_count":3,"received_data":50023,"sent_data":1682,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2023-12-04","alert":"Unique code from Jetriz, Swid \u0026 Jeniva of the Tetris framework","trigger":"notix.io/ent/current/enot.min.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"@imp0rtp3 (modified by Florian Roth)","date":"2020-09-06","description":"Unique code from Jetriz, Swid \u0026 Jeniva of the Tetris framework","reference":"https://imp0rtp3.wordpress.com/2021/08/12/tetris","rule":"apt_CN_Tetris_JS_advanced_1"}}]},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-12T14:03:07.162983Z","times_seen":15063181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/scripts/bbms.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d28b6cbe87e8f21c3f3b924ad2fce84","sha1":"a0fcb29b5007430efcedea382a71414b19a5700c","sha256":"1fe518c0a3dc387ca3984382c6ed29c0c2c1018b40547523a619666040b3e760","sha512":"a86ab81c6579b60dcf8d80328b191f3780d4b234773f47d0089f3831ab2dea5b92c79ab74b2ab7dc23a86025fe15e73d28bb68f1f8d6b26af1aa119e18faf8a0","ssdeep":"","tlshash":"61d0a79f141d25348aa3b955c9ef602c2867b2e81a13a545364d9a25072930d911d99d","size":237,"data":"","first_seen":"2023-03-07T01:27:14Z","last_seen":"2024-10-26T18:09:40.090635Z","times_seen":756,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-12T14:03:07.162983Z","times_seen":15063181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/js/jquery.min.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"4a49f85f5a02fa6fe11126720da50874","sha1":"22d7cc863dff0e664cee95c7b42b2f2066114788","sha256":"9efc83acac2e60262a78810abf089aed8e5a2832d64b0977ab0e2922fd01021f","sha512":"f47eb5daa3ee1342c574012ab98020c05c8912917113510b3a273b45c0435b942ea56062835a4ace2f150777b7c6804832dcd5e969aafade4061091c9fe882b2","ssdeep":"1536:AYE1JVoiB9JqZdXXe2pD3PgoIiulrUn6Z6a4tfOR7Wp/PEWBZPBJda4w9W3qG9aX:b4J+rlfOhWp/PDCW6G9a98HrU","tlshash":"5593e7c9b7c67052976734a850bf510bf17a99dab40c4c60e068d4e47eb4a8e907bf3c","size":92110,"data":"","first_seen":"2023-05-20T12:56:56Z","last_seen":"2024-10-26T18:09:40.092602Z","times_seen":736,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/js/main.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":false,"md5":"c3ed5ac7dda566870186c4c8e6cf0dcd","sha1":"116f6823fde2478b194b03cc9c160e8c1a175d45","sha256":"ee975a46a04968de8e8cc99c8a7784e05be0d2347245f6cefe4bd9072d319e7d","sha512":"c4deb36b052c7a9f6f6409e8a490a5c5fe0049924c074e98b4f6d41823fb1eee7aea4f0e782775085d7a48d5cccb2ea9d12cad74d9e1d57736fe2725c60cdc5d","ssdeep":"","tlshash":"3211593c0b2b3a460da05e7e13cde448565ff817704a49262cedb8d0e8ddd59c095e2b","size":838,"data":"","first_seen":"2023-05-20T12:56:56Z","last_seen":"2024-12-16T05:15:09.150067Z","times_seen":737,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-12T14:03:07.162983Z","times_seen":15063181,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"notix.io/ent/current/enot.min.js","fqdn":"notix.io","domain":"notix.io","tld":"io"},"ip":{"addr":"139.45.240.92","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ec57c87dbac3f07e59e5d74ae3421e4","sha1":"70121f1541a1961d7b87544001d612f18ad04243","sha256":"e1d529afcbb911c99bb039ba39c7fb6716275b97650ae816a90fc03f256542bb","sha512":"2c7649f28378009c66f4aefd02559d8c9e9b164f6c7deb014b6c2f0c2f08d97764c85fb7105a77ca5adceb35046c4b2828e74863b725b2c25ce99af7c599a92a","ssdeep":"1536:Ay52kbAGZsFvXQUWMTSVozYZ8Z+oDFsX/m/j8KOhQRSbsAY1AdniNake42N3pzN7:N2kbavoMTSVozYZ8Z+ouX/feR2Yeli01","tlshash":"9ae3988176e0ec9e07d7b776b73ba0d1e44b1a6c39c4890bd181fc50199d22beae95f0","size":144887,"data":"","first_seen":"2023-11-29T11:39:02Z","last_seen":"2023-12-08T03:48:58Z","times_seen":193,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-04T05:45:01.492Z","timestamp":1701668701492,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/ HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1535,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, ASCII text, with CRLF line terminators","md5":"ba41c329d99f0eb8187e552d179b23cd","sha1":"69f0a6dae53b10fad4ab0db6d183400c8581ae09","sha256":"8a8245a3c199f1f625311f28f051225b693ed14af0e06e1f1fd51abb46f7808b","sha512":"f3b684a24336398e8b2ce3cb060df18cc47c258f0cc71db3f1a5b85623a141f34e0369b9c1506612205654b113749e3942584e60a86bb4e73da4798b34f95481","ssdeep":"","tlshash":"ec61b5193d4ee0671372d2e39033e75c74deda2a97228165b4e5443b2ae2f846c0aa49","first_seen":"2023-11-23T14:41:20Z","last_seen":"2024-08-20T18:09:59.020963Z","times_seen":101,"resource_available":false,"data":null}},"time_used":268,"timings":{"blocked":115,"dns":0,"connect":37,"send":0,"wait":37,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/css/style.css","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.001Z","timestamp":1701668702001,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/css/style.css HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: text/css\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"655e338c-1077\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1051,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"beef0c0ce13f25f65a84019bebe6378b","sha1":"2f95dd2d3ba5e1c848487a4e28199d3ad32037df","sha256":"1f3ad9786b942cf941cdbdb71e8fedaef63dbef237ce767e61229c838b46cb14","sha512":"9329b6bc0d33edb7c190b9cf7ab1341e0ceb0a9ef131a922abc30ea8f6f12e9f99af98390ce23781fc7a3775bd4e68c5c4512460e4ba385dd3cdf3de51342993","ssdeep":"48:xfoB63QUjX8PBwliENQ+3P/EeP0Jhl5SeWP/UjM0P0lhP03J2n977P0NVFxoYWOW:xdX8SJB3P/m15WP/gMP4MntiVFxRw0e","tlshash":"0d9101a5d101220152339ea453952a2afbe8d0738b4723f97dce404dd7cba8987e1fdd","first_seen":"2023-06-06T22:50:33Z","last_seen":"2024-12-16T05:15:09.143988Z","times_seen":427,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/js/jquery.min.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.016Z","timestamp":1701668702016,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/js/jquery.min.js HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"655e338c-167ce\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32081,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32065), with CRLF line terminators","md5":"4a49f85f5a02fa6fe11126720da50874","sha1":"22d7cc863dff0e664cee95c7b42b2f2066114788","sha256":"9efc83acac2e60262a78810abf089aed8e5a2832d64b0977ab0e2922fd01021f","sha512":"f47eb5daa3ee1342c574012ab98020c05c8912917113510b3a273b45c0435b942ea56062835a4ace2f150777b7c6804832dcd5e969aafade4061091c9fe882b2","ssdeep":"1536:AYE1JVoiB9JqZdXXe2pD3PgoIiulrUn6Z6a4tfOR7Wp/PEWBZPBJda4w9W3qG9aX:b4J+rlfOhWp/PDCW6G9a98HrU","tlshash":"5593e7c9b7c67052976734a850bf510bf17a99dab40c4c60e068d4e47eb4a8e907bf3c","first_seen":"2023-05-20T12:56:56Z","last_seen":"2024-10-26T18:09:40.092602Z","times_seen":736,"resource_available":true,"data":null}},"time_used":91,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":77,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/scripts/bbms.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.004Z","timestamp":1701668702004,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/scripts/bbms.js HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"655e338c-ed\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":170,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"7d28b6cbe87e8f21c3f3b924ad2fce84","sha1":"a0fcb29b5007430efcedea382a71414b19a5700c","sha256":"1fe518c0a3dc387ca3984382c6ed29c0c2c1018b40547523a619666040b3e760","sha512":"a86ab81c6579b60dcf8d80328b191f3780d4b234773f47d0089f3831ab2dea5b92c79ab74b2ab7dc23a86025fe15e73d28bb68f1f8d6b26af1aa119e18faf8a0","ssdeep":"","tlshash":"61d0a79f141d25348aa3b955c9ef602c2867b2e81a13a545364d9a25072930d911d99d","first_seen":"2023-03-07T01:27:14Z","last_seen":"2024-10-26T18:09:40.090635Z","times_seen":756,"resource_available":true,"data":null}},"time_used":240,"timings":{"blocked":96,"dns":1,"connect":34,"send":0,"wait":34,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/js/main.js","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.018Z","timestamp":1701668702018,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/js/main.js HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"655e338c-346\"\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":405,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"c3ed5ac7dda566870186c4c8e6cf0dcd","sha1":"116f6823fde2478b194b03cc9c160e8c1a175d45","sha256":"ee975a46a04968de8e8cc99c8a7784e05be0d2347245f6cefe4bd9072d319e7d","sha512":"c4deb36b052c7a9f6f6409e8a490a5c5fe0049924c074e98b4f6d41823fb1eee7aea4f0e782775085d7a48d5cccb2ea9d12cad74d9e1d57736fe2725c60cdc5d","ssdeep":"","tlshash":"3211593c0b2b3a460da05e7e13cde448565ff817704a49262cedb8d0e8ddd59c095e2b","first_seen":"2023-05-20T12:56:56Z","last_seen":"2024-12-16T05:15:09.150067Z","times_seen":737,"resource_available":true,"data":null}},"time_used":249,"timings":{"blocked":91,"dns":2,"connect":38,"send":0,"wait":37,"receive":1,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/images/close_icon.png","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.006Z","timestamp":1701668702006,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/images/close_icon.png HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 248\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nConnection: keep-alive\r\nETag: \"655e338c-f8\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":248,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\\012- data","md5":"eaf98c5e61ff92dcfd5568474e1f8d09","sha1":"bb5a1dae13cf4c1de3111642d9132a89c453727a","sha256":"dc02cbd81ea7799f019a1687f57a2e0b2941a5c1d28bcd8b3aa2f89fb77e07a8","sha512":"a4f6585d0446675684692cdf7d100238d7b8981b7da6a8b7551ec2416406f5edad71fc7e525a6d2a6c158601371328910e9937b14bd8322e53db7112ebe5d5ca","ssdeep":"","tlshash":"8ed095d537551c3d85068f5f59790017e579154a4c0145075eb01d04bc1584dc046313","first_seen":"2023-06-06T22:50:33Z","last_seen":"2024-12-16T05:15:09.153685Z","times_seen":755,"resource_available":false,"data":null}},"time_used":298,"timings":{"blocked":128,"dns":1,"connect":37,"send":0,"wait":34,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/images/warning_icon.png","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.011Z","timestamp":1701668702011,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/images/warning_icon.png HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 1457\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nConnection: keep-alive\r\nETag: \"655e338c-5b1\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1457,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 107 x 94, 8-bit/color RGBA, non-interlaced\\012- data","md5":"3b9478bb5dc9a8fb3c5b80df7bcb8200","sha1":"e553d00e0d91f52ae972549227f94a87c6b60947","sha256":"2f09f151cb4af02177af559872b142d1898830598fe5866012189c2c616b06dd","sha512":"d27332a18e22cc43a8e3b7532e0f150ab6739e0f56095706eba79ae0f575526b20880fe2e50186bb368591797d94266cb9d4283ae07907f1d90dfb5ec476d956","ssdeep":"","tlshash":"f231c793b9882873e401ca2b99d607b278e55a0960140c1d1b878dd32854ea2b8ae9ba","first_seen":"2023-06-06T22:50:33Z","last_seen":"2024-12-16T05:15:09.15578Z","times_seen":756,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":124,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/images/android.png","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.013Z","timestamp":1701668702013,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /blocker/47514/cleaner-update_p1/images/android.png HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 28700\r\nLast-Modified: Wed, 22 Nov 2023 16:59:56 GMT\r\nConnection: keep-alive\r\nETag: \"655e338c-701c\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28700,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 148, 8-bit/color RGBA, non-interlaced\\012- data","md5":"f75de32d9451cc905a7b3a6c34a72914","sha1":"2044c1233cfbecbe1606349f3ad218186d540134","sha256":"d94f23d6bd7b27a0e2923b621132bf2d30cc8ec9e59d36d542b59709579a2c1f","sha512":"8e65eaf6bf1618f50e35445ce9401d26de3571ea3b027e11b5b95b12f5cc66617043fad4907f887e219dafdd47a03030e9a11747d6945605e29aad08a0adae14","ssdeep":"384:oH5pslIhdKWFjRouKknjkwlvcCR0XmuHMkhJeToxQ7Zg/3D/GGya5alUeXtv4UyX:oHzG3WTkwlvcCmHEziGTa8lhtv4SVRe","tlshash":"79d2f1eb4e849723abf0ac13714020c25a517d827463fbccadb93bb57d94ac01c99d9e","first_seen":"2023-06-06T22:50:33Z","last_seen":"2024-12-16T05:15:09.158217Z","times_seen":756,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":121,"dns":0,"connect":37,"send":0,"wait":102,"receive":1,"ssl":70},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.197Z","timestamp":1701668702197,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://71fbbq5ib1mrnvraff.security-patch-today.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15920\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Nov 2023 07:29:35 GMT\r\nexpires: Fri, 29 Nov 2024 07:29:35 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 11 May 2022 19:24:45 GMT\r\ncontent-type: font/woff2\r\nage: 339321\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15920,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\\012- data","md5":"3a44e06eb954b96aa043227f3534189d","sha1":"23cef6993ddb2b2979e8e7647fc3763694e2ba7d","sha256":"b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e","sha512":"fab970b250dd88064730bd2603c530f3503abb0af4e4095786877f9660a159bf4ad98c5abea2e95eb39ae8c13417736b5772fcb9f87941ff5e0f383cb172997f","ssdeep":"384:sShqOXQlaSchOwK0uFvRqq3xR/xb5OY3aU/lHS9WE2YeK1os:sShJKaScJK0uFvRvxb5OY3aU/lHkmK","tlshash":"cc62cf5c6a901684c67c29b63b6d616be9a1cd50c2ab73904fdba317d30d3a1e0298fd","first_seen":"2023-04-05T08:15:27Z","last_seen":"2026-05-12T13:44:06.725804Z","times_seen":64789,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":47,"dns":0,"connect":7,"send":0,"wait":20,"receive":4,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.203Z","timestamp":1701668702203,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://71fbbq5ib1mrnvraff.security-patch-today.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15860\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 29 Nov 2023 21:13:56 GMT\r\nexpires: Thu, 28 Nov 2024 21:13:56 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 11 May 2022 19:24:42 GMT\r\ncontent-type: font/woff2\r\nage: 376260\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15860,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\\012- data","md5":"e9f5aaf547f165386cd313b995dddd8e","sha1":"acdef5603c2387b0e5bffd744b679a24a8bc1968","sha256":"f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860","sha512":"2a71edb5490f286642a874d52a1969f54282bc43cb24e8d5a297e13b320321fb7b7af5524eac609cf5f95ee08d5e4ec5803e2a3c8d13c09f6cc38713c665d0ce","ssdeep":"384:S7qmPTF4N21t//YW2FS6+1XxrsbGmjlAbvqMmtCN:S621tHY4xwbGmjloSM7N","tlshash":"1a62d0058ba5850bf5b907fb0e1ab7ee30664b523c8c42278348073970db47a6b2b1fd","first_seen":"2023-04-05T14:47:55Z","last_seen":"2026-05-12T13:44:06.835614Z","times_seen":91072,"resource_available":false,"data":null}},"time_used":187,"timings":{"blocked":84,"dns":0,"connect":8,"send":0,"wait":8,"receive":2,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.199Z","timestamp":1701668702199,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://71fbbq5ib1mrnvraff.security-patch-today.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 15744\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Nov 2023 04:57:34 GMT\r\nexpires: Fri, 29 Nov 2024 04:57:34 GMT\r\ncache-control: public, max-age=31536000\r\nage: 348442\r\nlast-modified: Wed, 11 May 2022 19:24:48 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15744,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\\012- data","md5":"15d9f621c3bd1599f0169dcf0bd5e63e","sha1":"7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52","sha256":"f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615","sha512":"d35a47162fc160cd5f806c3bb7feb50ec96fdfc81753660ead22ef33f89be6b1bfd63d1135f6b479d35c2e9d30f2360ffc8819efca672270e230635bcb206c82","ssdeep":"384:z1TLklSElcS5V6qQTMUP07JwirW6RlLwK79/:p7EJ5E2bJwi5jLwK79/","tlshash":"8162e00158a163ade9b2327ed10b1b91c40660a27d2504e8c6e4fc95fe3d7ed5487b76","first_seen":"2023-04-05T08:15:27Z","last_seen":"2026-05-12T13:44:06.711652Z","times_seen":160125,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":88,"dns":1,"connect":45,"send":0,"wait":9,"receive":1,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"71fbbq5ib1mrnvraff.security-patch-today.com/favicon.ico","fqdn":"71fbbq5ib1mrnvraff.security-patch-today.com","domain":"security-patch-today.com","tld":"com"},"ip":{"addr":"185.155.184.48","port":443,"asn":6898,"as":"SERVER.swiss Sagl","country":"Switzerland","country_code":"CH"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.462Z","timestamp":1701668702462,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.security-patch-today.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 07 Nov 2023 03:40:59 GMT","end":"Mon, 05 Feb 2024 03:40:58 GMT"},"fingerprint":{"sha1":"C8:7F:3F:77:C7:F7:44:1F:CB:0A:D9:0E:7F:3C:02:18:CF:3C:0B:29","sha256":"C5:58:EE:F2:BB:DD:DC:00:D0:47:62:B6:A6:81:0B:EA:9B:C2:C3:1D:7B:97:3F:94:77:2D:4D:DB:B4:07:6B:C4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 71fbbq5ib1mrnvraff.security-patch-today.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Mon, 04 Dec 2023 05:44:56 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"notix.io/settings?appId=1005f183164df77b0d72a2d487bc69b\u0026ver=0.15.19","fqdn":"notix.io","domain":"notix.io","tld":"io"},"ip":{"addr":"139.45.240.92","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.497Z","timestamp":1701668702497,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notix.io","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Sep 2023 11:38:16 GMT","end":"Thu, 14 Dec 2023 11:38:15 GMT"},"fingerprint":{"sha1":"68:78:0C:AA:A6:75:6F:E2:65:2D:3B:7E:5B:8A:2B:6B:F6:1A:BF:1D","sha256":"09:A8:C2:87:1C:48:1E:F9:18:90:A9:C7:E2:BC:76:77:BD:FB:3D:D9:6A:16:67:59:7C:F4:17:42:7F:DD:A9:2C"}}},"request":{"raw":"GET /settings?appId=1005f183164df77b0d72a2d487bc69b\u0026ver=0.15.19 HTTP/1.1\r\nHost: notix.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/\r\nOrigin: https://71fbbq5ib1mrnvraff.security-patch-today.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 04 Dec 2023 05:44:57 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 318\r\naccess-control-allow-origin: https://71fbbq5ib1mrnvraff.security-patch-today.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":318,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text, with very long lines (318), with no line terminators","md5":"82b0c0f76512e60ea030da09ee18febf","sha1":"2c4b11e5713c2f7e6a3da2ef87a1c0c78c3da195","sha256":"a8ca49249ca90a131bba14405671cb243da2849145a3d8074b0b5c232c2b57d1","sha512":"2ffbb6931bf476a8574e5a085df2ac5867f949d235d079a6245c073ba92409b05e2b592b0c0102d5c21013ed7a8ae112b3e11817c8211090f467a579ea342045","ssdeep":"","tlshash":"2ce0c28f54e72ed257f79a72d65f099bd0f3901d48530ab26bfb8a0e009138e47d2229","first_seen":"2023-11-13T13:36:33Z","last_seen":"2026-05-09T08:39:35.142047Z","times_seen":1279,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:01.997Z","timestamp":1701668701997,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /css2?family=Roboto:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 04 Dec 2023 05:44:56 GMT\r\ndate: Mon, 04 Dec 2023 05:44:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6824,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (7013), with no line terminators","md5":"12a5f984cb99e0c985a2d90f89d3f6ef","sha1":"d5e7fee18eae9e9a367f6690f6a820d275c0f168","sha256":"c5fc5af7d840d629587a49de952ae1ff542b0310b07034c7cd31b2d633bc95b2","sha512":"3ad16efd1e7b296639d823a7f24d5993ded31250de130a32651ec95ed7c7d7e92165ebcbe1fba90cd9171d59d5511f82eed62306dd612790eb9c285590c85b29","ssdeep":"96:GRWXFZrgZFJ4Vc+on+pNzGhTFZ4zfKScVc+oELNBvTEFZuIQUDFVc+o6GNF:GRWjgZFJCE+PGhMzfKSmnzvTrIQUDR1I","tlshash":"84e1ad91541b5000eb830ee637dfba35bd0f2b25607292329bfd68ae9ccbc22535875d","first_seen":"2023-05-05T09:24:01Z","last_seen":"2025-04-06T09:44:17.466873Z","times_seen":1443,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":25,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"notix.io/ent/current/enot.min.js","fqdn":"notix.io","domain":"notix.io","tld":"io"},"ip":{"addr":"139.45.240.92","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://71fbbq5ib1mrnvraff.security-patch-today.com/blocker/47514/cleaner-update_p1/","date":"2023-12-04T05:45:02.195Z","timestamp":1701668702195,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notix.io","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Sep 2023 11:38:16 GMT","end":"Thu, 14 Dec 2023 11:38:15 GMT"},"fingerprint":{"sha1":"68:78:0C:AA:A6:75:6F:E2:65:2D:3B:7E:5B:8A:2B:6B:F6:1A:BF:1D","sha256":"09:A8:C2:87:1C:48:1E:F9:18:90:A9:C7:E2:BC:76:77:BD:FB:3D:D9:6A:16:67:59:7C:F4:17:42:7F:DD:A9:2C"}}},"request":{"raw":"GET /ent/current/enot.min.js HTTP/1.1\r\nHost: notix.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://71fbbq5ib1mrnvraff.security-patch-today.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 04 Dec 2023 05:44:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 29 Nov 2023 16:35:15 GMT\r\netag: W/\"65676843-235f7\"\r\naccess-control-allow-credentials: true\r\ncache-control: no-cache\r\npragma: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":144887,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"5ec57c87dbac3f07e59e5d74ae3421e4","sha1":"70121f1541a1961d7b87544001d612f18ad04243","sha256":"e1d529afcbb911c99bb039ba39c7fb6716275b97650ae816a90fc03f256542bb","sha512":"2c7649f28378009c66f4aefd02559d8c9e9b164f6c7deb014b6c2f0c2f08d97764c85fb7105a77ca5adceb35046c4b2828e74863b725b2c25ce99af7c599a92a","ssdeep":"1536:Ay52kbAGZsFvXQUWMTSVozYZ8Z+oDFsX/m/j8KOhQRSbsAY1AdniNake42N3pzN7:N2kbavoMTSVozYZ8Z+ouX/feR2Yeli01","tlshash":"9ae3988176e0ec9e07d7b776b73ba0d1e44b1a6c39c4890bd181fc50199d22beae95f0","first_seen":"2023-11-29T11:39:02Z","last_seen":"2023-12-08T03:48:58Z","times_seen":193,"resource_available":true,"data":null}},"time_used":328,"timings":{"blocked":160,"dns":21,"connect":33,"send":0,"wait":33,"receive":0,"ssl":74},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"","description":"Public Nextron YARA rules","scan_date":"2023-12-04","alert":"Unique code from Jetriz, Swid \u0026 Jeniva of the Tetris framework","trigger":"notix.io/ent/current/enot.min.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"@imp0rtp3 (modified by Florian Roth)","date":"2020-09-06","description":"Unique code from Jetriz, Swid \u0026 Jeniva of the Tetris framework","reference":"https://imp0rtp3.wordpress.com/2021/08/12/tetris","rule":"apt_CN_Tetris_JS_advanced_1"}}],"urlquery":null}}]}