{"report_id":"cb095c24-7346-47cd-8395-d71864d1cbd5","version":6,"status":"done","tags":[],"date":"2025-08-04T08:40:52Z","url":{"schema":"http","addr":"email.marcusevansonline.com","fqdn":"email.marcusevansonline.com","domain":"marcusevansonline.com","tld":"com"},"ip":{"addr":"54.240.174.69","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"email.marcusevansonline.com/","fqdn":"email.marcusevansonline.com","domain":"marcusevansonline.com","tld":"com"},"title":"Why am I here?"},"submit":{"url":{"schema":"http","addr":"email.marcusevansonline.com","fqdn":"email.marcusevansonline.com","domain":"marcusevansonline.com","tld":"com"},"ip":{"addr":"54.240.174.69","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-08T08:40:52Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"email.marcusevansonline.com","ip":{"addr":"54.240.174.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2000-09-13","domain_rank":699669,"first_seen":"2014-07-16T06:28:23Z","last_seen":"2025-07-28T02:37:10.668034Z","alert_count":0,"request_count":2,"received_data":3760,"sent_data":1019,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"email.marcusevansonline.com/","fqdn":"email.marcusevansonline.com","domain":"marcusevansonline.com","tld":"com"},"ip":{"addr":"54.240.174.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-04T08:40:31.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dg-0111-7ebd718.client-tls.adestra.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sat, 02 Aug 2025 00:00:00 GMT","end":"Mon, 31 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"47:17:5F:58:92:E4:0F:D4:A6:F8:56:B6:B6:66:3B:75:2D:BB:D0:86","sha256":"30:BB:29:3C:12:24:44:A0:DD:66:5B:A8:A0:50:CB:0F:4C:86:AA:74:DD:51:FF:8E:D8:B9:77:5A:CD:74:01:BB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: email.marcusevansonline.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\nserver: Apache\r\nlast-modified: Wed, 23 Dec 2020 19:02:09 GMT\r\ncontent-encoding: gzip\r\ndate: Mon, 04 Aug 2025 07:46:54 GMT\r\ncache-control: max-age=7200\r\nexpires: Mon, 04 Aug 2025 09:46:54 GMT\r\netag: W/\"a66-5b726540067ed\"\r\nvary: accept-encoding\r\nvia: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)\r\nage: 3217\r\nx-cache: Hit from cloudfront\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: qOGRl9sm96pvSHAh2TOAlIKMLzv_O7T0bX10UFuR-qOmM_Em2hf_dg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2662,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"fff3df8ac9cc41dfff42c65dd1f4a3fd","sha1":"e4ee0729375a348d38bb0062baf5abb7ac2c2f3b","sha256":"e2e2d89221a15686e7bcca2f0b07af320f2546c14bd992171c60fe60da92059b","sha512":"36aa5236c692e666f40ba3854cbc32fe19704de38d4ab504720de3c0d30839852eacc76a958589d5548a4d0bd9448df2671ba8dbc5ba4b30642371aeef352382","ssdeep":"","tlshash":"4151950e838e3fda9210427476eb2f11aa6fd4b09b4864a858b540edc7c5f9eec37594","first_seen":"2025-06-23T19:40:50.942024Z","last_seen":"2026-05-07T16:20:52.804388Z","times_seen":157,"resource_available":true,"data":null}},"time_used":770,"timings":{"blocked":352,"dns":132,"connect":1,"send":0,"wait":66,"receive":0,"ssl":217},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"email.marcusevansonline.com/favicon.ico","fqdn":"email.marcusevansonline.com","domain":"marcusevansonline.com","tld":"com"},"ip":{"addr":"54.240.174.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://email.marcusevansonline.com/","date":"2025-08-04T08:40:31.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dg-0111-7ebd718.client-tls.adestra.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sat, 02 Aug 2025 00:00:00 GMT","end":"Mon, 31 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"47:17:5F:58:92:E4:0F:D4:A6:F8:56:B6:B6:66:3B:75:2D:BB:D0:86","sha256":"30:BB:29:3C:12:24:44:A0:DD:66:5B:A8:A0:50:CB:0F:4C:86:AA:74:DD:51:FF:8E:D8:B9:77:5A:CD:74:01:BB"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: email.marcusevansonline.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://email.marcusevansonline.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-length: 209\r\ndate: Mon, 04 Aug 2025 08:40:31 GMT\r\nserver: Apache\r\nx-cache: Error from cloudfront\r\nvia: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: IcwFH1e0vAWYioPdJ_CSIBY5ynqWhjWQoA1-FuStmjsj5xFlAtvjFg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":209,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"18ffb59b61525f781cf9251045be575d","sha1":"bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d","sha256":"b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642","sha512":"a032f853abd9492232e1183d1cb1d14110b623f2e9dec56b7b64dd576a0317dda8d51125763e11d6642433c5364b2bd10a994ee4f1514629a4950bbab3aba499","ssdeep":"","tlshash":"ebd0229ea083228f452321903ac211d2a54d23a6bc7a42e83c83a88a921893dc4ca29d","first_seen":"2023-04-05T03:16:16Z","last_seen":"2026-05-07T16:20:59.109851Z","times_seen":35540,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}