{"report_id":"c58aa97a-1967-4dd4-a5a5-014b18312b46","version":6,"status":"done","tags":[],"date":"2024-06-29T15:58:18Z","url":{"schema":"http","addr":"kinexbearings.de/components/vestiary/portiere_Hibernology.html?eyk=mlijhu","fqdn":"kinexbearings.de","domain":"kinexbearings.de","tld":"de"},"ip":{"addr":"217.67.26.154","port":0,"asn":5578,"as":"SWAN, a.s.","country":"Slovakia","country_code":"SK"},"final":{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"title":"Adult Dating"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T11:58:03Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-06-28 18:15:27","alert_count":0,"request_count":6,"received_data":4196,"sent_data":1950,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.147.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2024-06-28 18:20:08","alert_count":0,"request_count":1,"received_data":5262,"sent_data":473,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2024-06-28 18:16:21","alert_count":0,"request_count":3,"received_data":88296,"sent_data":1623,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-06-28 18:12:58","alert_count":0,"request_count":9,"received_data":7986,"sent_data":2943,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kinexbearings.de","ip":{"addr":"217.67.26.154","port":0,"asn":5578,"as":"SWAN, a.s.","country":"Slovakia","country_code":"SK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":695,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.kinexbearings.de","ip":{"addr":"217.67.26.154","port":0,"asn":5578,"as":"SWAN, a.s.","country":"Slovakia","country_code":"SK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2016-02-18 07:44:44","last_seen":"2024-03-14 02:25:22","alert_count":0,"request_count":1,"received_data":435,"sent_data":531,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tenringold.com","ip":{"addr":"88.214.27.56","port":0,"asn":209272,"as":"Alviva Holding Limited","country":"Germany","country_code":"DE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":1556,"sent_data":724,"comment":"","tags":null,"fingerprints":null},{"fqdn":"befjajh.trackpartner.link","ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":11,"request_count":11,"received_data":130861,"sent_data":26208,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-06-29T15:57:54Z","timestamp":1719676674,"ip_dst":{"addr":"54.240.174.81","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":50484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed FingerprintJS Domain (openfpcdn .io in TLS SNI)","source":"{\"timestamp\":\"2024-06-29T15:57:54.879817+0000\",\"flow_id\":1537388627289602,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":50484,\"dest_ip\":\"54.240.174.81\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2049251,\"rev\":1,\"signature\":\"ET INFO Observed FingerprintJS Domain (openfpcdn .io in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2023_11_17\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_11_17\"]}},\"tls\":{\"sni\":\"openfpcdn.io\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"f4febc55ea12b31ae17cfb7e614afda8\",\"string\":\"771,4865,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":914,\"bytes_toclient\":4622,\"start\":\"2024-06-29T15:57:54.845314+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8dcffa91ec85cc95c95196d43f0885f5","sha1":"e85ccbbf77b65233b50827650f3adaccf6c45473","sha256":"e52641ab929ae3e2a68efa2a4e8a3a5f2479f084faeb8e97950cd751f5ec58b2","sha512":"f3b83d5e5bc14d4e9845138c5b7cf1c5aed268a34e0fd321e05442fe37c5c54e224bbe6e1f17b8df67322c4e1a901cd90f8dc1c27511a13f6cb5bfc70416a0de","ssdeep":"","tlshash":"ca117d58a091b43030f7b175a91ea2602477028f205edd93bdec72457f7af0e4783b90","size":1067,"data":"","first_seen":"2024-04-06T17:29:42Z","last_seen":"2024-10-21T03:14:05.778987Z","times_seen":312,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f72105f75867485be2c77f12be162a6","sha1":"386e5994dfdef8beb5a02f054f62430beeeaa777","sha256":"660174ef413789db39cdc01626a0ec429f88e1e1cae77624c0f0406be5c7974a","sha512":"dd3891e423aa110773f24c507b0d03f457a9313f9c07f7e1e49fe2bbf85243b61721a0334eee3c37731ef9eadd1d4fd3da6f7e68034fddac20736782bf282661","ssdeep":"","tlshash":"5ca022c8bcc0c0830c0300bb800a88a00e3c8c3c82a03203a820023820ac2822282ec0","size":68,"data":"","first_seen":"2024-08-19T18:48:49.499614Z","last_seen":"2024-08-19T18:48:49.499614Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"15f926db63bf9306da0ffca2f7373f6b","sha1":"f9abe3973e107a4f9e0bcad33cf823aa2e2008dd","sha256":"9735c70c0eb1a1ef02e61e4dd4978a0f8f1a3593f6b27243a4784ea190c11acb","sha512":"2613005cb22c2907bb90f7074f2034f8f8a85896c604904c55e8e548513f8d167c336801d9e9c4137626f749692943cd2e51389aac6ab744b608fabef819063d","ssdeep":"","tlshash":"7ee0805f08e5013001e73014850f2256353a4c43071cbd947d5c5353cf518648e70319","size":299,"data":"","first_seen":"2023-12-22T08:52:25Z","last_seen":"2024-11-05T19:20:10.303075Z","times_seen":828,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/js/jquery.js","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"introduction_type":"scriptElement","is_inline":false,"md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88145,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-05T02:45:22.739661Z","times_seen":115162,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/js/functions.js","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"f921852f09c09a1aff9a92d0ed864a82","sha1":"d08d2ff6166faf5a509c119889f53537cf9f16c1","sha256":"c67fb06258269bdd9a819d8c0b9c4b057e01131454d303b46bd2670c3e8bbb2b","sha512":"07578e48b76a3418ef8bb43ff5e757f953bcc04aba6f39583c33f290b4e405f99d06b024958804cad65e7a9640d69b9888a7b0bb9ab7916ac0c37d2692ab9f00","ssdeep":"","tlshash":"0821af2e7df2b563807730ad0eaf70492434507b52199e003e8c5aec4f9a4749677f9e","size":1310,"data":"","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.665215Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e7d6b85edb141824af8951e19333337c","sha1":"76600b2cb1978ca24d9fe39b1412f052da855ddb","sha256":"6e1bf43d1d49858aacd5de53b32b551732bca4b2a46b1f808eb6d6d0f2b70c0e","sha512":"caeece2e9f68aeb3ae0f077644afc417304c4c867674e779cc0acaa30e372ccf7cd42080fea47f986508082f15f7dfca6071def8dc77206af61167220c34c686","ssdeep":"384:JUr/AGPMPeRBiJRBxdMCD6AvSEzZMOC51MACXvAbXIORv1QpjXuBsb6ec3x7ZonL:JqAPbBRvB3ACfaYOTQpz0eEdAL","tlshash":"bed23a4d30df343a03a266d5212fe508b5795ec4700d4440eaba9a943df4eab627ffe9","size":30685,"data":"","first_seen":"2023-03-07T01:14:35Z","last_seen":"2026-04-04T11:59:58.165852Z","times_seen":8038,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"171f7aabf864bda03d5803446dbdacd5","sha1":"c7f26af338a5a53074a13f64ca9225ba9926df21","sha256":"882011424c1b96d116c9ee495b586c4aad352e37983ded71a7ebbaca679d75b1","sha512":"f0dd2ced62c47385b34b17b32a4f3835a10eef885631701d937c9ab6790c20723c8740af2411e60b2db068d34f05bbe5cb67f53404bcb8b0cec2031bf2140632","ssdeep":"192:5yF6jsFsCJbp7CdEFM8iQbp7yS6HTL85lCbg2:h61bp/iQbpQ","tlshash":"6be1104c25e2616246b775b85fdfa114317a841f344d5a00bc4c1b806fb8e39ebf4fa8","size":7370,"data":"","first_seen":"2024-06-14T04:37:19Z","last_seen":"2024-10-24T07:53:02.712178Z","times_seen":527,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:52.35561829Z","timestamp":1719676672355,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"97F30DE1FA8E41BF859BA482AF92CEC319429E14F4F81A9C675977B672ED7B9A\"\r\nLast-Modified: Fri, 28 Jun 2024 01:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9062\r\nExpires: Sat, 29 Jun 2024 18:28:54 GMT\r\nDate: Sat, 29 Jun 2024 15:57:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"11d12f1fba8aca9d9418e9d8dc4952bf","sha1":"815abf5c4b5eb6f908e3c9aa829ee2e6ccdcc449","sha256":"97f30de1fa8e41bf859ba482af92cec319429e14f4f81a9c675977b672ed7b9a","sha512":"925d61aa340b7ebfca1e3f63127c3aba709a71abe936e0e36cb3ee77a4825793300198f4f66759aea3ae63b360385ea7dfeb894010672de8630a24a9b1691b3a","ssdeep":"","tlshash":"18f00587119e7b0e577c24327f52dbb41f0c09a734453476bbc057e7b0a876605c844d","first_seen":"2024-06-28T08:56:03Z","last_seen":"2024-08-19T18:58:45.824809Z","times_seen":33870,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:52.748458401Z","timestamp":1719676672748,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7DD2781A8624CA9B8C54539A3C46C44CDD86477DE3078E4DAB624BFC7CE5B7AE\"\r\nLast-Modified: Thu, 27 Jun 2024 11:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11643\r\nExpires: Sat, 29 Jun 2024 19:11:55 GMT\r\nDate: Sat, 29 Jun 2024 15:57:52 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"116ef0f15d988075de9127b4d85aeeac","sha1":"cd431538d40d2097891757fd0ca8c06b576051e9","sha256":"7dd2781a8624ca9b8c54539a3c46c44cdd86477de3078e4dab624bfc7ce5b7ae","sha512":"df5ba3c67e56a4bb2deb671c7220e6d61eba39803f94d366758af9ff08918c5e2485c1a6ba108aa92c5ce1ac00c28b9235bb95181f47bccb5a9753bbc583e594","ssdeep":"","tlshash":"acf005d632fabc407f7d27242cd5cf5c3a09f9eea071a6d5388002d1a411f941e80448","first_seen":"2024-06-28T08:58:49Z","last_seen":"2024-08-19T18:58:45.825448Z","times_seen":28794,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:53.138085806Z","timestamp":1719676673138,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BB1019AA57AE13A1711A36128A9CD37FBA1ED8DFA97BEF742765067F4ED17D50\"\r\nLast-Modified: Thu, 27 Jun 2024 04:21:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15629\r\nExpires: Sat, 29 Jun 2024 20:18:22 GMT\r\nDate: Sat, 29 Jun 2024 15:57:53 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"1a0a218c9c80fb05585b4f6c937a462a","sha1":"e888eb5099221806dda66adb4bf792f352ef6610","sha256":"bb1019aa57ae13a1711a36128a9cd37fba1ed8dfa97bef742765067f4ed17d50","sha512":"902dc1c1d456f9780a825a5e2c5fa5ff5b7acdfa621e4716a8dec307268d544631f1999d75de75e77a8e2cc6b4233188002309a5afd148971f277cd8d61ac21b","ssdeep":"","tlshash":"45f005e917d57c5177602c983c78e33d1f111f6c7841a5cf64a046b7a904f866d94058","first_seen":"2024-06-28T08:58:50Z","last_seen":"2024-08-19T18:58:38.910292Z","times_seen":15194,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"kinexbearings.de/components/vestiary/portiere_Hibernology.html?eyk=mlijhu","fqdn":"kinexbearings.de","domain":"kinexbearings.de","tld":"de"},"ip":{"addr":"217.67.26.154","port":0,"asn":5578,"as":"SWAN, a.s.","country":"Slovakia","country_code":"SK"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:53.468267942Z","timestamp":1719676673468,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /components/vestiary/portiere_Hibernology.html?eyk=mlijhu HTTP/1.1\r\nHost: kinexbearings.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 29 Jun 2024 15:57:53 GMT\r\nServer: Apache/2.4.46 (Ubuntu)\r\nLocation: https://www.kinexbearings.de/components/vestiary/portiere_Hibernology.html?eyk=mlijhu\r\nContent-Length: 375\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":375,"size_decoded":375,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"829ac1b93e8d290b230cbae7698435a8","sha1":"be6ad06f268e3cff5da27df6a6b0fed6b66e6a6f","sha256":"aeeba7df48bfe19810d91eef6c4ea7068fe336a4a0efe3340c0bc88ce3f2d243","sha512":"6ce5c391a2bdceccede48a743ac5e8055f5bcafd26cf23197fe3e021881f33302b9df9fe814feca459548df14d47bd57fdc7b62da019a3722a3170933231ba94","ssdeep":"","tlshash":"2fe060fe878024c13a433a8075f029c336cd00f2e59aa46c02cb9682e0840b28c9b0c0","first_seen":"2024-08-19T18:48:49.471314Z","last_seen":"2024-08-19T18:48:49.471314Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.kinexbearings.de/components/vestiary/portiere_Hibernology.html?eyk=mlijhu","fqdn":"www.kinexbearings.de","domain":"kinexbearings.de","tld":"de"},"ip":{"addr":"217.67.26.154","port":0,"asn":5578,"as":"SWAN, a.s.","country":"Slovakia","country_code":"SK"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:53.788603083Z","timestamp":1719676673788,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /components/vestiary/portiere_Hibernology.html?eyk=mlijhu HTTP/1.1\r\nHost: www.kinexbearings.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 29 Jun 2024 15:57:53 GMT\r\nServer: Apache/2.4.46 (Ubuntu)\r\nLast-Modified: Mon, 24 Jun 2024 10:23:54 GMT\r\nETag: \"5e-61ba02d9c6501-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 101\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":101,"size_decoded":94,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"10893aaa86ed49803b9f348b6f8a3c25","sha1":"a842378e3b00f64ebf80d8405b921324f5102ecc","sha256":"bf0ad4ae4f73a2e965f34fa946416e6f9b5d4db3f620642c6d75391047f4120f","sha512":"c1508276c80daaa5cd267c400d7fbd67e5a44ed19661d072ad3208084cb5adf0dbdbe167d2ef8eb367c81954e8fd94d9cea6ec290545314bc6a0e15eb8c0ffd1","ssdeep":"","tlshash":"79b0125a1600040241379d10a1a5212683556842c4144c10f14cc48a0f70b15f0832a5","first_seen":"2024-06-29T01:52:00Z","last_seen":"2024-08-19T18:52:20.682713Z","times_seen":20,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"tenringold.com/","fqdn":"tenringold.com","domain":"tenringold.com","tld":"com"},"ip":{"addr":"88.214.27.56","port":0,"asn":209272,"as":"Alviva Holding Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.664115361Z","timestamp":1719676674664,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: tenringold.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nServer: Apache/2\r\nUpgrade: h2,h2c\r\nConnection: Upgrade, Keep-Alive\r\nLast-Modified: Fri, 28 Jun 2024 19:38:39 GMT\r\nETag: \"704-61bf864e78dc0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 740\r\nKeep-Alive: timeout=2, max=100\r\nContent-Type: text/html\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":740,"size_decoded":1796,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"6c579a178d40e76f76ce80ef8a578b6b","sha1":"29573c7083261d4ad30b77d3aa60c9227dc15acc","sha256":"68455997fb2547c565d6e2e1ecf20059a3eb728d0430705ace62212aeed76a97","sha512":"8d67f3daf2fe801c5963ff1cfe2b7eb2184201776d1b80ef3247d273e0d0a1e34211a7ecafe89934d5a5c3700e018b35542593c0efcc28347c6ae02d1b6c8b44","ssdeep":"","tlshash":"a731335749c9141a3a774238f771f3abf4a625231645e118f19dab3a1fb1d40d873ac8","first_seen":"2024-06-29T01:52:00Z","last_seen":"2024-08-19T18:52:20.683538Z","times_seen":8,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.898944349Z","timestamp":1719676674898,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10\"\r\nLast-Modified: Fri, 28 Jun 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9319\r\nExpires: Sat, 29 Jun 2024 18:33:13 GMT\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"0c22b10a118098f2cdc4b186e6f8e9a8","sha1":"cfe8b247d843f42d2205bb16a48cefe38c78526e","sha256":"1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10","sha512":"374e0d69837bfafa3abbd758ca34fa701e38c7942e476e55d865d705c7b4a13208bf572c227e87acfffa472ca38a70a13a81a1fc33343650c1ed0feaa450a331","ssdeep":"","tlshash":"b1f0050511b77841b17049165cfed3331e105e76305290f450f0d161fdb5bae96c0a6d","first_seen":"2024-06-28T09:23:27Z","last_seen":"2024-08-21T17:30:07.029554Z","times_seen":38494,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.903775382Z","timestamp":1719676674903,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10\"\r\nLast-Modified: Fri, 28 Jun 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9319\r\nExpires: Sat, 29 Jun 2024 18:33:13 GMT\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"0c22b10a118098f2cdc4b186e6f8e9a8","sha1":"cfe8b247d843f42d2205bb16a48cefe38c78526e","sha256":"1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10","sha512":"374e0d69837bfafa3abbd758ca34fa701e38c7942e476e55d865d705c7b4a13208bf572c227e87acfffa472ca38a70a13a81a1fc33343650c1ed0feaa450a331","ssdeep":"","tlshash":"b1f0050511b77841b17049165cfed3331e105e76305290f450f0d161fdb5bae96c0a6d","first_seen":"2024-06-28T09:23:27Z","last_seen":"2024-08-21T17:30:07.029554Z","times_seen":38494,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.905159389Z","timestamp":1719676674905,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10\"\r\nLast-Modified: Fri, 28 Jun 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9319\r\nExpires: Sat, 29 Jun 2024 18:33:13 GMT\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"0c22b10a118098f2cdc4b186e6f8e9a8","sha1":"cfe8b247d843f42d2205bb16a48cefe38c78526e","sha256":"1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10","sha512":"374e0d69837bfafa3abbd758ca34fa701e38c7942e476e55d865d705c7b4a13208bf572c227e87acfffa472ca38a70a13a81a1fc33343650c1ed0feaa450a331","ssdeep":"","tlshash":"b1f0050511b77841b17049165cfed3331e105e76305290f450f0d161fdb5bae96c0a6d","first_seen":"2024-06-28T09:23:27Z","last_seen":"2024-08-21T17:30:07.029554Z","times_seen":38494,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.906611287Z","timestamp":1719676674906,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10\"\r\nLast-Modified: Fri, 28 Jun 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9319\r\nExpires: Sat, 29 Jun 2024 18:33:13 GMT\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"0c22b10a118098f2cdc4b186e6f8e9a8","sha1":"cfe8b247d843f42d2205bb16a48cefe38c78526e","sha256":"1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10","sha512":"374e0d69837bfafa3abbd758ca34fa701e38c7942e476e55d865d705c7b4a13208bf572c227e87acfffa472ca38a70a13a81a1fc33343650c1ed0feaa450a331","ssdeep":"","tlshash":"b1f0050511b77841b17049165cfed3331e105e76305290f450f0d161fdb5bae96c0a6d","first_seen":"2024-06-28T09:23:27Z","last_seen":"2024-08-21T17:30:07.029554Z","times_seen":38494,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:54.90781615Z","timestamp":1719676674907,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"1208B1961307DFB3C91A337DFA900F9BE57F91CAB6A7DD3D7C5E38D2399D5D10\"\r\nLast-Modified: Fri, 28 Jun 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9319\r\nExpires: Sat, 29 Jun 2024 18:33:13 GMT\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"0c22b10a118098f2cdc4b186e6f8e9a8","sha1":"cfe8b247d843f42d2205bb16a48cefe38c78526e","sha256":"1208b1961307dfb3c91a337dfa900f9be57f91cab6a7dd3d7c5e38d2399d5d10","sha512":"374e0d69837bfafa3abbd758ca34fa701e38c7942e476e55d865d705c7b4a13208bf572c227e87acfffa472ca38a70a13a81a1fc33343650c1ed0feaa450a331","ssdeep":"","tlshash":"b1f0050511b77841b17049165cfed3331e105e76305290f450f0d161fdb5bae96c0a6d","first_seen":"2024-06-28T09:23:27Z","last_seen":"2024-08-21T17:30:07.029554Z","times_seen":38494,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"tenringold.com/favicon.ico","fqdn":"tenringold.com","domain":"tenringold.com","tld":"com"},"ip":{"addr":"88.214.27.56","port":0,"asn":209272,"as":"Alviva Holding Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:55.001974379Z","timestamp":1719676675001,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tenringold.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://tenringold.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 29 Jun 2024 15:57:54 GMT\r\nServer: Apache/2\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nContent-Length: 198\r\nKeep-Alive: timeout=2, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":198,"size_decoded":481,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"71629fbc74de4f524add9e68829e177e","sha1":"88876bfc0e2a7b4eca355a9d1fb6228a012b2916","sha256":"2aa34359b717dfa03e6f02509e63322d929f553e35450c77e333c647554f43ee","sha512":"ebac42cdc33a550f1b984258c7b348619cfaafc6940339cd0edff29768c960a6a73ecea807484003bede1ffdd4f80061bcf4011ef3102dfcb9401de79b3fb647","ssdeep":"","tlshash":"7ff0976cd86705ce00033070798a00b58a080397d43681ea2c02a820092003c53c02cf","first_seen":"2024-06-29T01:52:00Z","last_seen":"2024-08-19T18:52:20.684803Z","times_seen":22,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.225234931Z","timestamp":1719676676225,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"05D1BFF31563788030B9A83A7AC4FD81549DF86AD714E51141A22ECB089FD166\"\r\nLast-Modified: Thu, 27 Jun 2024 19:59:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10389\r\nExpires: Sat, 29 Jun 2024 18:51:05 GMT\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"076abe8072f8d63099ca3593c79b8e8d","sha1":"000567886561ea67392fa7112b26887b43fded85","sha256":"05d1bff31563788030b9a83a7ac4fd81549df86ad714e51141a22ecb089fd166","sha512":"d1fcb2ebaff2058d5749140b984cd796b673ed809559116b00657d65570fae0578e86e5f2b075bd09cae29db82f63b1d38999192275b3267e5b2d3e8d88650f8","ssdeep":"","tlshash":"def00ea726a3bd94f9b1022978fdd2998a184b64305459e668e00383ac25bac47b9888","first_seen":"2024-06-29T09:16:29Z","last_seen":"2024-08-19T18:51:12.530748Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-06-29T15:57:56.032Z","timestamp":1719676676032,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /s/62cf1c2250951?track=looker3 HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Accept-Encoding\r\nSet-Cookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ; expires=Sun, 30-Jun-2024 15:57:56 GMT; Max-Age=86400; path=/; domain=trackpartner.link\nSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=trackpartner.link\nESID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=trackpartner.link\r\nCache-Control: no-cache, no-store, must-revalidate\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15484,"size_decoded":53214,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (30569)","md5":"d695a0812d99351cfdca697d2a37b08f","sha1":"6827d7f495e5a1d3fb0f8b7d684f00a541582eb2","sha256":"4301a75e602c0aa5415e636bea1820d6f83b0ce8e41e1c4364e80f6a1004850a","sha512":"0354cf1f941e6011c3242c9ebeb91ed9c3e8558188216222cbf66b383747cd00763342fe35a41dfb8db74810fd19fc080244544b0fa0930962a518de534f35c6","ssdeep":"768:uGkLqAPbBRvB3ACfaYOTQpz0eEdAa61bpqQbpr:XknVRvB3ACfaYT0eEL6Gy","tlshash":"d1331a5834e6343742a3a0d4356fd20939bd8e47b50e4804bafd4ad52fe4e56d23bbb8","first_seen":"2024-08-19T18:48:49.475588Z","last_seen":"2024-08-19T18:48:49.475588Z","times_seen":1,"resource_available":false,"data":null}},"time_used":633,"timings":{"blocked":207,"dns":95,"connect":32,"send":0,"wait":217,"receive":1,"ssl":78},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/css/style.css","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.579Z","timestamp":1719676676579,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/css/style.css HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:42 GMT\r\nVary: Accept-Encoding, Accept-Encoding\r\nETag: W/\"63333f36-185a\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1499,"size_decoded":6234,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"64ae593074b996a7ba709ca1ab84beae","sha1":"21a7e99f63e6450628dc516e112074e25b537d67","sha256":"3facfceec1c92b8e4c767ddad17411e65e8062a06dc8e966e0063a10c1967921","sha512":"aa16cf6f2009e51fb47187f187a83023b3aeafe8ac19c9d2850e796ab9e5c900090600d144f6eca3fae0ac9f8504071e8bc45abb2e8cee1dcc135f266f75ae45","ssdeep":"192:pE7F5IZBLEQFd3FgbKS6wf24mkGQm0KLB:pE7FWLF9Fpn","tlshash":"50d18e52c1e3aecbb422a5a93bab4349626cc407a505df3d3bad329d9fc51c4c073799","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.652671Z","times_seen":7,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/js/functions.js","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.592Z","timestamp":1719676676592,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/js/functions.js HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:49 GMT\r\nVary: Accept-Encoding, Accept-Encoding\r\nETag: W/\"63333f3d-51e\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":484,"size_decoded":1310,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"f921852f09c09a1aff9a92d0ed864a82","sha1":"d08d2ff6166faf5a509c119889f53537cf9f16c1","sha256":"c67fb06258269bdd9a819d8c0b9c4b057e01131454d303b46bd2670c3e8bbb2b","sha512":"07578e48b76a3418ef8bb43ff5e757f953bcc04aba6f39583c33f290b4e405f99d06b024958804cad65e7a9640d69b9888a7b0bb9ab7916ac0c37d2692ab9f00","ssdeep":"","tlshash":"0821af2e7df2b563807730ad0eaf70492434507b52199e003e8c5aec4f9a4749677f9e","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.665215Z","times_seen":8,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/css/reset.css","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.611Z","timestamp":1719676676611,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/css/reset.css HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/bundle/640/assets/css/style.css\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:42 GMT\r\nVary: Accept-Encoding, Accept-Encoding\r\nETag: W/\"63333f36-6c0\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":750,"size_decoded":1728,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"320ef06347c0c7030fff1680c0a75136","sha1":"8d72c3fc5397ffe42f736e784b2256442ba07248","sha256":"0f66cffe9b71dfd75001b302e0ac2f6ce93e0303dfb1f4e141815688e3487e38","sha512":"45f93b22bab772c192bf51c5e5976b8fc5635f2715d2d19b190449eac894c1313815e1c137e419785cdcff40126e4dfee80898027f7e1b2342b0a821d9332bf4","ssdeep":"","tlshash":"d231129c9c10d4c09735cb3163528f34fa1451b30e025278fad9cf995b7a26586aef7e","first_seen":"2023-04-16T19:02:03Z","last_seen":"2026-01-18T11:42:21.375662Z","times_seen":26,"resource_available":false,"data":null}},"time_used":55,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.709482924Z","timestamp":1719676676709,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"bef2decfc002a28553f98c40ec13611e","sha1":"75c1154a73259d53dcd44b04b422d6255008b8f9","sha256":"d6d8f09a03cc5eed81e48f5876354d1fbbf0ff00b1431ef86921c890d043554a","sha512":"d5fd061304be3e6fb8aadc79d75bb4a50297179d3710ceea92147aeb2e6f840cf4db187a4681f74e4580b89410a0850af6eaafbf72589af40e5e9ef1292f227a","ssdeep":"","tlshash":"95f05c0833b2bee82f41ac2436cce9e8223079cc92041a0a107ee34425a23678b0837a","first_seen":"2024-06-29T00:05:17Z","last_seen":"2024-08-19T18:52:49.846391Z","times_seen":1416,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/images/ic-like.png","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.585Z","timestamp":1719676676585,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/images/ic-like.png HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 3446\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:47 GMT\r\nETag: \"63333f3b-d76\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3446,"size_decoded":3446,"mime_type":"image/png","magic":"PNG image data, 76 x 72, 8-bit/color RGBA, non-interlaced","md5":"00a6c531b92a46d4214aefd33a41616c","sha1":"c71f37aa2b4d829eeb02661b69c432369c224818","sha256":"f9424c7a1e4009b5b77ab2756437d8603413fd1b21dddf21380093daea85d027","sha512":"2ddb361b3b3834bfa94a72a9da03a37695a40ff41a7fa459954ee85e210d8ef33bf1dee5637576fcd9e65ee5130caf016405f7cf160aa19325d58a40c184ec09","ssdeep":"","tlshash":"","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.654222Z","times_seen":8,"resource_available":false,"data":null}},"time_used":196,"timings":{"blocked":161,"dns":0,"connect":0,"send":0,"wait":34,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/images/ic-comment.png","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.587Z","timestamp":1719676676587,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/images/ic-comment.png HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 2828\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:47 GMT\r\nETag: \"63333f3b-b0c\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2828,"size_decoded":2828,"mime_type":"image/png","magic":"PNG image data, 76 x 74, 8-bit/color RGBA, non-interlaced","md5":"fcf5098220efcf1af0f54986095bc84f","sha1":"0be2d24ac54a4ef8d0fdd9387a009976f608dbe2","sha256":"47d2346f001ee2392d7b07f924965c53bdfafc1567ed70e4d6b08bd80055cf03","sha512":"e4ee459253a87d3845c54be3a02a1e6892d8612023f21f8db7ad56f99036da1f4f8444c791b0a517f2df7dc185d5a64ffcdac5e906082e27fb07df8ce499e5c2","ssdeep":"","tlshash":"","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.639966Z","times_seen":8,"resource_available":false,"data":null}},"time_used":375,"timings":{"blocked":158,"dns":1,"connect":54,"send":0,"wait":52,"receive":1,"ssl":81},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/js/jquery.js","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.589Z","timestamp":1719676676589,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/js/jquery.js HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:49 GMT\r\nVary: Accept-Encoding, Accept-Encoding\r\nETag: W/\"63333f3d-15851\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30908,"size_decoded":88145,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-05T02:45:22.739661Z","times_seen":115162,"resource_available":true,"data":null}},"time_used":371,"timings":{"blocked":119,"dns":4,"connect":53,"send":0,"wait":107,"receive":5,"ssl":79},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Josefin+Sans:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.147.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.612Z","timestamp":1719676676612,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:32:33 GMT","end":"Thu, 05 Sep 2024 16:32:32 GMT"},"fingerprint":{"sha1":"C7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B","sha256":"D5:2E:9D:B3:DA:FA:7E:B6:3F:FB:FE:44:DA:B9:09:DB:FA:40:97:D5:41:54:69:4C:8B:08:74:C9:8F:C5:51:59"}}},"request":{"raw":"GET /css2?family=Josefin+Sans:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 29 Jun 2024 15:57:56 GMT\r\ndate: Sat, 29 Jun 2024 15:57:56 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4632,"size_decoded":4632,"mime_type":"text/css; charset=utf-8","magic":"gzip compressed data, max compression","md5":"3ab41b25e85ff35ca1ae9cc3dbf9ce7f","sha1":"a8b1e89ed269135783abc966e3aebbfdd9c8e25d","sha256":"43905d43ed564ee72fb4eaec718e76b40570d91b6460dbf4145b1c7608f2f7e5","sha512":"cab306baf0d2de88445557301ab2161fe265c58a57edc13e74bfc79a592cf2be4366f3cc3b1c8e6bda9e00dd08c0bdb21e5bfbe416ee9f9cf163e8716ccdf37b","ssdeep":"96:sbAlSfamekpDmUf3+EZeDu4Vsr26VtZZijW1O2hHUKiQPJMm4z:sbCSfaEL+Th6rSjWzJfa","tlshash":"d6a17d4c492e85eb9a4d08a67d20cc94d40d7a354c6a10093bd4e4afbc4d98e147eb5c","first_seen":"2024-06-29T17:58:25Z","last_seen":"2024-09-19T21:46:42.356438Z","times_seen":2,"resource_available":false,"data":null}},"time_used":232,"timings":{"blocked":98,"dns":1,"connect":23,"send":0,"wait":35,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.901443452Z","timestamp":1719676676901,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"bef2decfc002a28553f98c40ec13611e","sha1":"75c1154a73259d53dcd44b04b422d6255008b8f9","sha256":"d6d8f09a03cc5eed81e48f5876354d1fbbf0ff00b1431ef86921c890d043554a","sha512":"d5fd061304be3e6fb8aadc79d75bb4a50297179d3710ceea92147aeb2e6f840cf4db187a4681f74e4580b89410a0850af6eaafbf72589af40e5e9ef1292f227a","ssdeep":"","tlshash":"95f05c0833b2bee82f41ac2436cce9e8223079cc92041a0a107ee34425a23678b0837a","first_seen":"2024-06-29T00:05:17Z","last_seen":"2024-08-19T18:52:49.846391Z","times_seen":1416,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.925404913Z","timestamp":1719676676925,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"559aa414317bf1f850db09285be67d56","sha1":"92aa13c1573ee06a9bd63aa9c86ce554634d5b62","sha256":"2bd132d3f876dd0bcfbd9f75f7440f2c446bf69fad4fa9514012cb2b13565e91","sha512":"d443522917b50500b74dbc1f350bf0e546a430d9dcb4620c837d03c3ea2d00d8b7c47dc54767f5077d18818c34734085f9c72b9388901f36e14898edf66ebea1","ssdeep":"","tlshash":"a6f023923778becd0f290c243d9cfba4a0596b3501392c057479b7f93022ffd16981a1","first_seen":"2024-06-29T00:04:57Z","last_seen":"2024-08-19T18:52:44.228736Z","times_seen":1473,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.941353234Z","timestamp":1719676676941,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"559aa414317bf1f850db09285be67d56","sha1":"92aa13c1573ee06a9bd63aa9c86ce554634d5b62","sha256":"2bd132d3f876dd0bcfbd9f75f7440f2c446bf69fad4fa9514012cb2b13565e91","sha512":"d443522917b50500b74dbc1f350bf0e546a430d9dcb4620c837d03c3ea2d00d8b7c47dc54767f5077d18818c34734085f9c72b9388901f36e14898edf66ebea1","ssdeep":"","tlshash":"a6f023923778becd0f290c243d9cfba4a0596b3501392c057479b7f93022ffd16981a1","first_seen":"2024-06-29T00:04:57Z","last_seen":"2024-08-19T18:52:44.228736Z","times_seen":1473,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:56.968624242Z","timestamp":1719676676968,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"559aa414317bf1f850db09285be67d56","sha1":"92aa13c1573ee06a9bd63aa9c86ce554634d5b62","sha256":"2bd132d3f876dd0bcfbd9f75f7440f2c446bf69fad4fa9514012cb2b13565e91","sha512":"d443522917b50500b74dbc1f350bf0e546a430d9dcb4620c837d03c3ea2d00d8b7c47dc54767f5077d18818c34734085f9c72b9388901f36e14898edf66ebea1","ssdeep":"","tlshash":"a6f023923778becd0f290c243d9cfba4a0596b3501392c057479b7f93022ffd16981a1","first_seen":"2024-06-29T00:04:57Z","last_seen":"2024-08-19T18:52:44.228736Z","times_seen":1473,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.849Z","timestamp":1719676676849,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:31:03 GMT","end":"Thu, 05 Sep 2024 16:31:02 GMT"},"fingerprint":{"sha1":"C4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04","sha256":"FE:73:3D:68:5C:A3:33:5A:16:07:35:24:D9:EE:14:5F:33:6E:49:C9:E4:0A:46:C6:D6:34:2D:ED:01:DB:68:14"}}},"request":{"raw":"GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://befjajh.trackpartner.link\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28600\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 29 Jun 2024 04:31:43 GMT\r\nexpires: Sun, 29 Jun 2025 04:31:43 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 24 Aug 2023 20:50:09 GMT\r\ncontent-type: font/woff2\r\nage: 41173\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28600,"size_decoded":28600,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28600, version 1.0","md5":"de104ab8acb1088aebea1aae24724a91","sha1":"b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1","sha256":"c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058","sha512":"344c715eb0c1b94e5b21c42fb5f985780a82b46cf060176fac3fdd0044bbf692c304c41dfe2ba87603c0b9e5877fd91dcbf14d070fb2689235ef5f1549ff5ea0","ssdeep":"768:ghn4BbkaiWnFKO3QFUB1ECEDGtqOGVA9wk1auZ:O4rcOAUL7UOGW2r2","tlshash":"54d2f1a43e3c381e4445cb3a67646f32071559fd4db274c950a2e2e70d4a7ad8dafb01","first_seen":"2023-05-03T04:10:43Z","last_seen":"2026-04-04T18:07:15.558587Z","times_seen":2830,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":94,"dns":1,"connect":23,"send":0,"wait":26,"receive":10,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.849Z","timestamp":1719676676849,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:31:03 GMT","end":"Thu, 05 Sep 2024 16:31:02 GMT"},"fingerprint":{"sha1":"C4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04","sha256":"FE:73:3D:68:5C:A3:33:5A:16:07:35:24:D9:EE:14:5F:33:6E:49:C9:E4:0A:46:C6:D6:34:2D:ED:01:DB:68:14"}}},"request":{"raw":"GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://befjajh.trackpartner.link\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28600\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 29 Jun 2024 04:31:43 GMT\r\nexpires: Sun, 29 Jun 2025 04:31:43 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 24 Aug 2023 20:50:09 GMT\r\ncontent-type: font/woff2\r\nage: 41173\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28600,"size_decoded":28600,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28600, version 1.0","md5":"de104ab8acb1088aebea1aae24724a91","sha1":"b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1","sha256":"c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058","sha512":"344c715eb0c1b94e5b21c42fb5f985780a82b46cf060176fac3fdd0044bbf692c304c41dfe2ba87603c0b9e5877fd91dcbf14d070fb2689235ef5f1549ff5ea0","ssdeep":"768:ghn4BbkaiWnFKO3QFUB1ECEDGtqOGVA9wk1auZ:O4rcOAUL7UOGW2r2","tlshash":"54d2f1a43e3c381e4445cb3a67646f32071559fd4db274c950a2e2e70d4a7ad8dafb01","first_seen":"2023-05-03T04:10:43Z","last_seen":"2026-04-04T18:07:15.558587Z","times_seen":2830,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":94,"dns":1,"connect":23,"send":0,"wait":26,"receive":10,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/images/bg-1-web.jpg","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.825Z","timestamp":1719676676825,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/images/bg-1-web.jpg HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/bundle/640/assets/css/style.css\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 62724\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:43 GMT\r\nETag: \"63333f37-f504\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":62724,"size_decoded":62724,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x1080, components 3","md5":"30e18cd215b80a307f3964a969fe07f7","sha1":"89d0661c3362db35b6918604f7200df12e36b222","sha256":"e3fe8dd8d64138e1e9a13a1b165c0934b7ad97c34816bfcb411716f4fa0419f9","sha512":"3e8817506984ab47514664c9bf78f1700cbe03af796d06a248bddf2b3f529144a131d5400a00b2310f4fd7c473d735640dd2f4728e8750791ad71f0d2d9a2e07","ssdeep":"","tlshash":"","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.659648Z","times_seen":8,"resource_available":false,"data":null}},"time_used":189,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.849Z","timestamp":1719676676849,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:31:03 GMT","end":"Thu, 05 Sep 2024 16:31:02 GMT"},"fingerprint":{"sha1":"C4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04","sha256":"FE:73:3D:68:5C:A3:33:5A:16:07:35:24:D9:EE:14:5F:33:6E:49:C9:E4:0A:46:C6:D6:34:2D:ED:01:DB:68:14"}}},"request":{"raw":"GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://befjajh.trackpartner.link\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28600\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 29 Jun 2024 04:31:43 GMT\r\nexpires: Sun, 29 Jun 2025 04:31:43 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 24 Aug 2023 20:50:09 GMT\r\ncontent-type: font/woff2\r\nage: 41173\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28600,"size_decoded":28600,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28600, version 1.0","md5":"de104ab8acb1088aebea1aae24724a91","sha1":"b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1","sha256":"c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058","sha512":"344c715eb0c1b94e5b21c42fb5f985780a82b46cf060176fac3fdd0044bbf692c304c41dfe2ba87603c0b9e5877fd91dcbf14d070fb2689235ef5f1549ff5ea0","ssdeep":"768:ghn4BbkaiWnFKO3QFUB1ECEDGtqOGVA9wk1auZ:O4rcOAUL7UOGW2r2","tlshash":"54d2f1a43e3c381e4445cb3a67646f32071559fd4db274c950a2e2e70d4a7ad8dafb01","first_seen":"2023-05-03T04:10:43Z","last_seen":"2026-04-04T18:07:15.558587Z","times_seen":2830,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":94,"dns":1,"connect":23,"send":0,"wait":26,"receive":10,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-29T15:57:57.050017712Z","timestamp":1719676677050,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Sat, 29 Jun 2024 15:57:57 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"559aa414317bf1f850db09285be67d56","sha1":"92aa13c1573ee06a9bd63aa9c86ce554634d5b62","sha256":"2bd132d3f876dd0bcfbd9f75f7440f2c446bf69fad4fa9514012cb2b13565e91","sha512":"d443522917b50500b74dbc1f350bf0e546a430d9dcb4620c837d03c3ea2d00d8b7c47dc54767f5077d18818c34734085f9c72b9388901f36e14898edf66ebea1","ssdeep":"","tlshash":"a6f023923778becd0f290c243d9cfba4a0596b3501392c057479b7f93022ffd16981a1","first_seen":"2024-06-29T00:04:57Z","last_seen":"2024-08-19T18:52:44.228736Z","times_seen":1473,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/images/favicon.png","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:57.068Z","timestamp":1719676677068,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/images/favicon.png HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ; CF=4G2Thq+CDw5WD1C3+Nyfew__\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:57 GMT\r\nContent-Type: image/png\r\nContent-Length: 2527\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:47 GMT\r\nETag: \"63333f3b-9df\"\r\nExpires: Mon, 29 Jul 2024 15:57:57 GMT\r\nCache-Control: max-age=2592000, private\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2527,"size_decoded":2527,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced","md5":"fae5e143caf5ef11f900407feb08c777","sha1":"2a4caa65bda7342a9e70fce33447bbfac4084900","sha256":"124e81555c7b35e5a1177252c407def5d4a8a322473b255c97d491519290fee9","sha512":"1bc25787e9bbb5a58715085ba99c1491c26cb60af55491f18f7f0614235770a23cb8f7e81ed440a6977a2be50639d864cce1f8b8e176604c4e38cb73ff235351","ssdeep":"","tlshash":"5c512ac370535c2dabab4b32865030b185431cdb42401f632379c6f2afa75d4006debb","first_seen":"2023-05-04T17:25:08Z","last_seen":"2026-04-03T07:29:01.453114Z","times_seen":392,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/track.php","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"176.123.10.32","port":443,"asn":200019,"as":"Alexhost Srl","country":"Moldova","country_code":"MD"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:57.299Z","timestamp":1719676677299,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"POST /track.php HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 3939\r\nOrigin: https://befjajh.trackpartner.link\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ; CF=4G2Thq+CDw5WD1C3+Nyfew__\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:57 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding, Accept-Encoding\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":20,"mime_type":"text/html; charset=UTF-8","magic":"gzip compressed data, from Unix","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"befjajh.trackpartner.link/bundle/640/assets/images/profile-1.png","fqdn":"befjajh.trackpartner.link","domain":"trackpartner.link","tld":"link"},"ip":{"addr":"178.162.199.80","port":443,"asn":28753,"as":"Leaseweb Deutschland GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://befjajh.trackpartner.link/s/62cf1c2250951?track=looker3","date":"2024-06-29T15:57:56.837Z","timestamp":1719676676837,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"trackpartner.link","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 07 Jun 2024 11:06:51 GMT","end":"Thu, 05 Sep 2024 11:06:50 GMT"},"fingerprint":{"sha1":"33:8A:FC:8B:01:E0:CB:8F:E3:1D:54:D7:45:8E:F1:A2:98:46:FF:AD","sha256":"50:0F:C9:5F:30:A9:9B:B8:DE:3F:FC:D5:38:BA:03:F1:CF:52:2D:E3:48:3A:75:5A:E9:8F:7F:84:DF:29:06:3F"}}},"request":{"raw":"GET /bundle/640/assets/images/profile-1.png HTTP/1.1\r\nHost: befjajh.trackpartner.link\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://befjajh.trackpartner.link/bundle/640/assets/css/style.css\r\nCookie: s=r7hCAc2%2FECnLXGF8Yfqh%2FQBTggwtW%2BqUXWg9yC6LHlccL7TKWQDRAtjmbxqdq8%2FjpFnIWH8QXUpHoXqX3WwlxiB%2B3vmXHqNL%2BRe476R7DaIKFFAGzMRnVABR3%2BhrgXaEweZ44dNUuiTMdKNsANCUvUGD4G98FZ9a%2FCBb%2FNBc9jLWQA%2FtaewQRPB5U3%2BYwmbvqNToV2qhArU%2Fz1dyAdXWXhqLzBj3yEx6QNeDRph7bMdT5KznNErk4NvcOVGki3M1F4nUA7BVbq8oq%2FVG5ikwA9KbWQ2aUfBhM4zAmfGbWM5cztNnDDvJl09uwOcWeZgEkHAAHftZ%2FcyTaE7FzLy7Vq5jp2NDuMhqqNRUxA%2BCPvvWffVJls13dL86U3djUudANEJjBD8YBnphmXDqaNzEXyHrokIoI4B%2FVcTMmn%2FcOeMFSHhYLZ1XnRU7zG98wUJGxhwOSubqJtPixyiLDJzgyh71Dgy%2Bzi%2FkJmzWt%2BxF3ULqwUl54%2FCuG7Tc71Jj1xeNroFR8715yzJBbnqz%2FZtsUMs%2FNyMDgQdck4xL8xProGqEg0N101LtmL%2F7JxExtSLCOhj2rvO%2FT71N%2Bt9AZk%2B2GbpXNoZuIou9S%2FQF4zqGHVxtIUJ37sHcxdrpcuUuB3ByhnsLHpA3XedaAYLU136NXDh0sJ%2BJ6YgefDxAF0bOcAuhXcdPhCE%2BphoJ2wxK9%2F%2Fn3BsMsRh7wgAH1i1Pe0edFhtNAxGTA9123loeBe5EQZa%2FNPc%2Fiv1c5KC3lEPxYP5V3wvOVNzsCxswEw27yqKG3NrMPhdnXZkou06kC4r9BEslGQw5ONc3ZAXzVw8zrtKBdNYVNxGd736nyeI4N1u8A5Y7NoPMvFw5zKzSJQwdjlV4LEbcHSel%2Biqi9QoP4oYTK205SFBuiGDJKGKa8b1rXwxQw0sZoVGsWMrYhxwa%2BzjCXYdQYm4BcOg4JaoBxcgr82PQLUPtmvrDC1VyPKc6btE6AviRC5bfv38%2FIEdQ2mjU%2BovBgWAOpRKCASNd0x2QmEur1umzCObJjo84tyK4FymTQy1bscAvVIl9bhcoS7uMk2al4u87dT62JGHaeFO96bh6gGCnNEvC4q81DV9Vj0vKPCynS8psn6yg%2Be3BuNSWp0Jk48PsG5d%2FYrdCglfX5otyNZB2ph1iZGpNJDTj%2FbZTHnfFzI%2BcZXAC7EXg4%2F%2BhTzu%2Bhu0W2YJSzeULRjd3D0DJL%2Fc9NNyTLlGBMVVynWEFtPBVFq7lJjue4TOprfMhluPB2BcOvOLaeU%2FhCmKw0N51T4Xsx8GTeuPr7zzBfrBHJqPDzFZ52Z2m6%2F4KM%2BWSuQowUqkmBzr2hhwPraUM%2B1eNjrV%2FnOhKWRUAoYgeuqQYol4o74ZpMJvViI4T65BivN8t59PGYz4NWILec%2F5%2BWtdUiiKYs%2FoR2Has0tSResK%2F3Cl0EKvpjaTC11cTF58bGKf5Iv6i5No5wHN16jxcWLC%2Fc8i%2BamOW7xHXoypFhalYEmX4IeeXF0vzVSn6NoW3Rgx89VBwQVDnNVew%2FpW8Ibqf0G90kr9ZAmUCCCN9JlLPF7OE%2FHCxE4jBBowALKx2g25csOKRTGg6Hs2c5bRdL63gdOYTFZKjdEaJCYlrPMCTTRB5N3yRtwvkE%2BNfZc9%2Fm5J5YBX1hbStm2Pr5j8ZmzJbnDbHnv7PnRy80FJWK0xakf4b9g2NB2tSI0dHvwAnLPG%2Bp9Nc4aLtigTCCVtVm2bTTWi3W9IPQYA9JvrClXvZUmH3X4Nk%2BE%2Bo0u51h8iCqOIb9tzhDR9IrMVUnWkCqwyobMjORkgCOpCKWVth5%2B2xhK%2BrkiscZtfTci4rhyBu60zRmc1WGSEEpYP0BQAQlU%2BX%2FgngQEEPtGwo%2BAL4UdUBaAEMXMKLr%2BYpvvHP3ETDktxc%2FxxQ\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty/1.19.3.1\r\nDate: Sat, 29 Jun 2024 15:57:56 GMT\r\nContent-Type: image/png\r\nContent-Length: 4137\r\nConnection: keep-alive\r\nLast-Modified: Tue, 27 Sep 2022 18:21:47 GMT\r\nETag: \"63333f3b-1029\"\r\nExpires: Mon, 29 Jul 2024 15:57:56 GMT\r\nCache-Control: max-age=2592000, private\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4137,"size_decoded":4137,"mime_type":"image/png","magic":"PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced","md5":"c923aa6ea1ad705f5d63ccfa4a8188d8","sha1":"491d0fbb3e29082482eb1738a46f7fc16ad47939","sha256":"7d750a918083d1c7121ebfde8d94f1e1a4ad0b6fd72909471fc51f8eedd30ec6","sha512":"6db0aa0eb26dd314c48a10c52897e376fedb78290c32ae39d88a925f2b3ad54926cc5df2a84a6a32068c825a4af78d128cc4369b5cc8eff3067edd5cbcee175d","ssdeep":"","tlshash":"","first_seen":"2023-05-13T23:38:25Z","last_seen":"2025-10-28T14:58:57.662184Z","times_seen":8,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-06-29","alert":"Sinkholed","trigger":"trackpartner.link","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}