{"report_id":"dc71e2a3-8345-4d9d-bad7-6dc8e3c7dead","version":6,"status":"done","tags":[],"date":"2023-09-19T05:23:09Z","url":{"schema":"http","addr":"tebsicep.com/","fqdn":"tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"192.187.111.222","port":0,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"ww1.tebsicep.com/","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"title":"ww1.tebsicep.com/"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T23:12:49Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ww1.tebsicep.com","ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":5054,"sent_data":1317,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":175,"first_seen":"2018-07-01 08:43:07","last_seen":"2023-09-18 18:12:08","alert_count":0,"request_count":2,"received_data":1399,"sent_data":666,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img1.wsimg.com","ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2008-03-17","domain_rank":9893,"first_seen":"2012-06-20 16:42:31","last_seen":"2023-09-18 18:37:33","alert_count":0,"request_count":4,"received_data":199431,"sent_data":1759,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10 13:11:19","last_seen":"2023-09-03 06:47:12","alert_count":0,"request_count":1,"received_data":152661,"sent_data":421,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tebsicep.com","ip":{"addr":"192.187.111.222","port":80,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"domain_registered":"2022-12-07","domain_rank":0,"first_seen":"2022-12-20 14:51:14","last_seen":"2023-08-21 18:14:05","alert_count":0,"request_count":1,"received_data":362,"sent_data":385,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-09-19T05:22:51Z","timestamp":1695100971,"ip_dst":{"addr":"Client IP","port":57412,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"192.187.111.222","port":443,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"severity":"medium","alert":"ET INFO TLS Handshake Failure","source":"{\"timestamp\":\"2023-09-19T05:22:51.586944+0000\",\"flow_id\":2064467033320333,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"192.187.111.222\",\"src_port\":443,\"dest_ip\":\"10.70.215.252\",\"dest_port\":57412,\"proto\":\"TCP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2029340,\"rev\":2,\"signature\":\"ET INFO TLS Handshake Failure\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2020_01_30\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_01_30\"]}},\"tls\":{\"sni\":\"tebsicep.com\",\"version\":\"UNDETERMINED\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":3,\"bytes_toserver\":699,\"bytes_toclient\":173,\"start\":\"2023-09-19T05:22:51.322445+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"44fa8c833e8c682d3ba1f03dd4c4d76a","sha1":"16783091e9be8150b132b5fe3975dac2597917c9","sha256":"8691b1fbca29fd32b64f6ceb87f53183c2516f55e0f735d4c287bc42d75d9e9f","sha512":"c5fdacc878f395835d7d58f18f83aaffb8cff83828dc40f55fc267db9a0975f3db04d7035fab10216835baec2b4a8f96fb2056bf8ed17d1d1fea099660345724","ssdeep":"1536:WKQwMZS7JVcPygTqmaExzffrToFtnQxpuh3oRoC6GhxCL7fuzedgAzwGY8MFgCVc:iYglxpfRoC6GhwLDqeeGDLPmOYG","tlshash":"a6e36c9a77613422636390f4603f158fb23af959e84885f8b198d4e47cb8da91237f7c","size":151813,"data":"","first_seen":"2023-09-14T16:39:33Z","last_seen":"2023-09-21T14:09:20Z","times_seen":253,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"57a8b25a1882639d63381cbbe3f43ca6","sha1":"94bf8a91ae3b7cd4a880d2433b5d3ea3d95d585c","sha256":"77af6888e0c659ce11d0bfa70289ef354899a1efb65f809c850d8c87748d55ad","sha512":"7203e58b151566088c165557cd21515d18afdeabfe0b8a48626dadc9e2e18ad3d922a8f1e360374c8540f3bda6c2e718e014bc70ab9d526958f88ddf493c01b6","ssdeep":"","tlshash":"513151d832d4f8ac434759ed042f245af26b1d7601bde5c1e394d4e27c684ae80aae76","size":1579,"data":"","first_seen":"2023-04-05T05:00:26Z","last_seen":"2024-10-11T09:17:02.619094Z","times_seen":3041,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.e436491b.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"e983aacbec26b70d00af658cfe17bc81","sha1":"e7e3d106aa731733e471f2f63ca74b492a98bd2d","sha256":"5a3c09e99565941cdca97f210a8955db899655966e4358402f59c16df5da4127","sha512":"cbec22ef4d38558b0e83fdec020a632a9e03c878f81c0af86c5b64b942aaefa0accddaf2b67ade431cba8012f761c39828a4f41ab2e63c729466aaf7323c87b4","ssdeep":"96:ZxGxQUcJc4w7Ei00YW4H/qXGVB2TqP4JTPgQ4X3Lhv3GhSeeaV:ZxGxF4iS2+P4JUHLhOMeee","tlshash":"9da194eb72c270b0139911d8702f390bb17fe56ee999c4e2e1b386c54d7a4e744e291c","size":5070,"data":"","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1012,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/px.js?ch=2\u0026abp=1","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","size":476,"data":"","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/0.a16f62c5.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ec748bdd8fb4ec8bdc857ded25621bd","sha1":"f0442ff68df1bff4e54965ddace5e95be70ca4c6","sha256":"af0cfb6bd03aa508d13ba013ac1aaec1f4ae9de2acdbc1ecd74e8beff11fc909","sha512":"1ffe33bdd3780ffe28094bc5b3a88b6373dd6df5e3762e2aabacfe97769143f7fec05ecf8a0ef00302c90ee65b4d7f22f4c6fb47fb5bae402de136f350da13e5","ssdeep":"3072:tvvFN3NpnQ2oY8JGJgj3vy8cs5nHmAWSBjxWdQ31xKqt96LzeT/FH9Sh+IJnOfW1:ZvQGajNHqDoXtIJnOhUxhcdX8J","tlshash":"1c941bc979c1f0a217f321f5006f140bb37e6a1aa80c8550e255e9e5bcbe85e523bf6d","size":434565,"data":"","first_seen":"2023-08-17T22:55:11Z","last_seen":"2023-10-04T03:42:18Z","times_seen":2539,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/1.6a1b7d66.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"f4724ed88488d2383ce0667599d274d3","sha1":"a90fd620d869a4c8e3b4ee1ad1df26e4412f07f7","sha256":"26888945178aef666023f55465c4ff2b7697d8cab6f04a3088cf6475a66606b8","sha512":"dff9c413ae2296b42650f033a69bf3c90cde4983acf80c45ce4d6932ab7832176a748782902c629c13861e8a2a5aa0cef0452d620dbcb79e6a4a21ef72483073","ssdeep":"6144:UhWNnQYntQYn1uDUk4f0WTI4WY+MiqFYVb86T8:lNnQYntQYn1uDUk4f0WTI4WY+MiqFkb0","tlshash":"f644e6dea7e170bc4696d2decc36aedeb598de40d214ca76dfbe868bc40c0149427748","size":271099,"data":"","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-09T05:38:18.030571Z","times_seen":14876437,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"tebsicep.com/","fqdn":"tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"192.187.111.222","port":80,"asn":33387,"as":"NOCIX","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-19T05:22:51.630Z","timestamp":1695100971630,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: tebsicep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\ncache-control: max-age=0, private, must-revalidate\r\nconnection: close\r\ncontent-length: 11\r\ndate: Tue, 19 Sep 2023 05:22:52 GMT\r\nlocation: http://ww1.tebsicep.com\r\nserver: nginx\r\nset-cookie: sid=943be7a0-56ac-11ee-9f72-099c9e801bb2; path=/; domain=.tebsicep.com; expires=Sun, 07 Oct 2091 08:36:59 GMT; max-age=2147483647; HttpOnly\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":11,"size_decoded":0,"mime_type":"","magic":"ASCII text, with no line terminators","md5":"32682312d17c7cbf18e73594f5570319","sha1":"60e22121bdd0bc71cdb2bae2a3aa577006b2eae9","sha256":"e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47","sha512":"68337debb9cd659cece621af582ae2bc4b56b9cf06b26c45f4d9eb8beb91d3f36bead287218b5aa2bb4853a1cf1a12017ca57318d7e12f489884fdc6b261dfc1","ssdeep":"","tlshash":"3550000030c0300c0000000c0000030003000000000c033f0c3003c00c000000000003","first_seen":"2023-04-05T04:09:22Z","last_seen":"2025-03-02T06:14:56.641448Z","times_seen":15034,"resource_available":false,"data":null}},"time_used":963,"timings":{"blocked":123,"dns":1,"connect":123,"send":0,"wait":704,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-09-19T05:22:53.037Z","timestamp":1695100973037,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: ww1.tebsicep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: sid=943be7a0-56ac-11ee-9f72-099c9e801bb2\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 19 Sep 2023 05:22:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 2930\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-b72\"\r\nX-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_LMLx01Jksfug9tuBWSXYaz38KTj8sfRPcOBZfNkHWMG0WBUAu+eyKHPLlGshJofxyhK2hvV4wh112dru3hQa+A\r\nCache-Control: no-cache\r\nX-Content-Type-Options: nosniff\r\nSet-Cookie: caf_ipaddr=10.116.88.77;Path=/;Max-Age=86400;\ncountry=;Path=/;Max-Age=86400;\ncity=\"\";Path=/;Max-Age=86400;\nexpiry_partner=;Path=/;Max-Age=86400;\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2930,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (2930), with no line terminators","md5":"a6c453e4d67f693374671e2ac1c10fc9","sha1":"e767f216bf1062169f6b5d6f10a0e5bc271ccff7","sha256":"9c500e8aa5fc9f5a8c6cc34b8e39c0495c857e23fb83ee4492feb6347fc854cc","sha512":"a071c11424c9c70d8223409c1947c8eaea8e04787ec2d4605076872fe927ba9ff0d22a3149528198fe2c6e4d5da886b721985dc2a9528b596263d6cf5ba93b9e","ssdeep":"","tlshash":"2051e6d67dc5f9a88b4149e8403bf82ce1599929c938dcc0d3d0c0bbb8983de4d6ae74","first_seen":"2023-08-18T02:13:58Z","last_seen":"2023-09-29T16:42:04Z","times_seen":576,"resource_available":false,"data":null}},"time_used":206,"timings":{"blocked":2,"dns":1,"connect":1,"send":0,"wait":200,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-19T05:22:53.455448626Z","timestamp":1695100973455,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Tue, 19 Sep 2023 05:22:53 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"92a15348a22feb36b0226c56f9243648","sha1":"269519b91eb941311112a2133c9f08714d405235","sha256":"1cb3e158f67e534af13b24e4c9560f2622d6cdcd2e2344572e49d15a51ff74f5","sha512":"b3dbe3ab1a9340901b229a487d959d6e0737c21d2b125724b08c6f7f9f2d6480e19c5315f04a8adbdc64d60770ccc7809c7221e743803dbbc77f1b73cd4f390f","ssdeep":"","tlshash":"83f054073bb514a1adc7f4b825e5785b1314748c3bf002d575985081cb103cf6374f18","first_seen":"2023-09-18T16:37:59Z","last_seen":"2023-09-19T22:26:26Z","times_seen":917,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/1.6a1b7d66.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.405Z","timestamp":1695100973405,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/1.6a1b7d66.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: QJk9ZstdDBoWHzHZl/6nmvEqGwjxExiwX+dqDX4eCUdbNty+JtxhYDQCGVN8hYoRtrSBKl88ky0=\r\nx-amz-request-id: H1ZC38B181SHRZ37\r\nlast-modified: Thu, 17 Aug 2023 20:28:08 GMT\r\netag: \"f4724ed88488d2383ce0667599d274d3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: EfGdkf2vRdRCKwJyfRSvzNesqHi1pERi\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Wed, 18 Sep 2024 05:22:53 GMT\r\ndate: Tue, 19 Sep 2023 05:22:53 GMT\r\ncontent-length: 57412\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":57412,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"f4724ed88488d2383ce0667599d274d3","sha1":"a90fd620d869a4c8e3b4ee1ad1df26e4412f07f7","sha256":"26888945178aef666023f55465c4ff2b7697d8cab6f04a3088cf6475a66606b8","sha512":"dff9c413ae2296b42650f033a69bf3c90cde4983acf80c45ce4d6932ab7832176a748782902c629c13861e8a2a5aa0cef0452d620dbcb79e6a4a21ef72483073","ssdeep":"6144:UhWNnQYntQYn1uDUk4f0WTI4WY+MiqFYVb86T8:lNnQYntQYn1uDUk4f0WTI4WY+MiqFkb0","tlshash":"f644e6dea7e170bc4696d2decc36aedeb598de40d214ca76dfbe868bc40c0149427748","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1071,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":66,"dns":51,"connect":0,"send":0,"wait":3,"receive":3,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/css/1.b30f9100.chunk.css","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.401Z","timestamp":1695100973401,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/css/1.b30f9100.chunk.css HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: fN/am+41KN0b1B4SQJoPgImZVTqy5j8H9rCaOq8u1gP3b/llqMgmVzK8+412sjZXm5S00PYsxxw=\r\nx-amz-request-id: NV8TDBWHDC2XWERK\r\nlast-modified: Thu, 17 Aug 2023 20:28:12 GMT\r\netag: \"cde6ba410180d713de07be87f34e22aa\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ge.y1aNZuz8uRo0f8sQf3wi8vt4jO3mP\r\naccept-ranges: bytes\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Wed, 18 Sep 2024 05:22:53 GMT\r\ndate: Tue, 19 Sep 2023 05:22:53 GMT\r\ncontent-length: 175\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"cde6ba410180d713de07be87f34e22aa","sha1":"2ac17cbe65ee9b9cf414e50682f43e021cfd6287","sha256":"bebee8c1fae5a7aec3aa03100456f6800108621adcd1f0c1f44cf561ef8d160f","sha512":"bef59abcd07b257bd6775d7422b8a20d605c6ac23098d37a9e5043a93df68842fd571085a8ac8c3298bd3985fee6e6c3531058cd8395047e8049a1ee3fb45bb7","ssdeep":"","tlshash":"36c022bba4972869e0368e084a2009885070044980895224b0076a6442b24232a12a04","first_seen":"2023-08-10T01:43:34Z","last_seen":"2023-10-04T20:36:38Z","times_seen":2641,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":71,"dns":53,"connect":1,"send":0,"wait":6,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/0.a16f62c5.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.403Z","timestamp":1695100973403,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/0.a16f62c5.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: WX0e4OiHwl84McMRMlYC1Ox4QENw+Tn632eqDMgSTaVdy4Y96fuD7nAcURYjloJCH6pdIXwjU2k=\r\nx-amz-request-id: RAFYKP8K3P7C6NKZ\r\nlast-modified: Thu, 17 Aug 2023 20:28:07 GMT\r\netag: \"0ec748bdd8fb4ec8bdc857ded25621bd\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: YngpOzUh8G0W8juPYvQRE99rWwAaf9ld\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Wed, 18 Sep 2024 05:22:53 GMT\r\ndate: Tue, 19 Sep 2023 05:22:53 GMT\r\ncontent-length: 137571\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":137571,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65462)","md5":"0ec748bdd8fb4ec8bdc857ded25621bd","sha1":"f0442ff68df1bff4e54965ddace5e95be70ca4c6","sha256":"af0cfb6bd03aa508d13ba013ac1aaec1f4ae9de2acdbc1ecd74e8beff11fc909","sha512":"1ffe33bdd3780ffe28094bc5b3a88b6373dd6df5e3762e2aabacfe97769143f7fec05ecf8a0ef00302c90ee65b4d7f22f4c6fb47fb5bae402de136f350da13e5","ssdeep":"3072:tvvFN3NpnQ2oY8JGJgj3vy8cs5nHmAWSBjxWdQ31xKqt96LzeT/FH9Sh+IJnOfW1:ZvQGajNHqDoXtIJnOhUxhcdX8J","tlshash":"1c941bc979c1f0a217f321f5006f140bb37e6a1aa80c8550e255e9e5bcbe85e523bf6d","first_seen":"2023-08-17T22:55:11Z","last_seen":"2023-10-04T03:42:18Z","times_seen":2539,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":69,"dns":51,"connect":11,"send":0,"wait":5,"receive":43,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/px.js?ch=1\u0026abp=1","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.398Z","timestamp":1695100973398,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=1\u0026abp=1 HTTP/1.1\r\nHost: ww1.tebsicep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nCookie: sid=943be7a0-56ac-11ee-9f72-099c9e801bb2; caf_ipaddr=10.116.88.77; country=; city=\"\"; expiry_partner=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 19 Sep 2023 05:22:53 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":131,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img1.wsimg.com/parking-lander/static/js/main.e436491b.chunk.js","fqdn":"img1.wsimg.com","domain":"wsimg.com","tld":"com"},"ip":{"addr":"23.36.79.16","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.406Z","timestamp":1695100973406,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wsimg.com","organization":""},"issuer":{"commonName":"Starfield Secure Certificate Authority - G2","organization":"Starfield Technologies, Inc."},"validity":{"start":"Thu, 15 Sep 2022 21:44:19 GMT","end":"Tue, 17 Oct 2023 21:44:19 GMT"},"fingerprint":{"sha1":"4D:28:AB:B5:BB:E6:84:09:15:A9:80:A1:56:45:20:CB:87:93:83:A3","sha256":"E8:40:E3:F8:C4:66:90:02:48:76:1B:2B:14:F4:A4:26:1B:7D:3C:BE:BC:C5:BD:BB:DE:E9:FC:22:DC:99:D5:98"}}},"request":{"raw":"GET /parking-lander/static/js/main.e436491b.chunk.js HTTP/1.1\r\nHost: img1.wsimg.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-amz-id-2: bCB7q+mC/X+BydVWnVzeiC0i5FHw8Xn1Z0w6myMb2CedgrMV7wOp4KF6WLuEsxLACjZBWZpWNWk=\r\nx-amz-request-id: SBFMP1N6PV9P08K4\r\nlast-modified: Thu, 17 Aug 2023 20:28:08 GMT\r\netag: \"e983aacbec26b70d00af658cfe17bc81\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: W3E5iaK..P8HM5OQdketw0EzF8zE2XnV\r\naccept-ranges: bytes\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=31536000\r\nexpires: Wed, 18 Sep 2024 05:22:53 GMT\r\ndate: Tue, 19 Sep 2023 05:22:53 GMT\r\ncontent-length: 1749\r\ntiming-allow-origin: *\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1749,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (5022)","md5":"e983aacbec26b70d00af658cfe17bc81","sha1":"e7e3d106aa731733e471f2f63ca74b492a98bd2d","sha256":"5a3c09e99565941cdca97f210a8955db899655966e4358402f59c16df5da4127","sha512":"cbec22ef4d38558b0e83fdec020a632a9e03c878f81c0af86c5b64b942aaefa0accddaf2b67ade431cba8012f761c39828a4f41ab2e63c729466aaf7323c87b4","ssdeep":"96:ZxGxQUcJc4w7Ei00YW4H/qXGVB2TqP4JTPgQ4X3Lhv3GhSeeaV:ZxGxF4iS2+P4JUHLhOMeee","tlshash":"9da194eb72c270b0139911d8702f390bb17fe56ee999c4e2e1b386c54d7a4e744e291c","first_seen":"2023-08-18T01:35:52Z","last_seen":"2023-09-29T14:19:41Z","times_seen":1012,"resource_available":true,"data":null}},"time_used":200,"timings":{"blocked":68,"dns":50,"connect":11,"send":0,"wait":52,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ww1.tebsicep.com/px.js?ch=2\u0026abp=1","fqdn":"ww1.tebsicep.com","domain":"tebsicep.com","tld":"com"},"ip":{"addr":"15.197.204.56","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.400Z","timestamp":1695100973400,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /px.js?ch=2\u0026abp=1 HTTP/1.1\r\nHost: ww1.tebsicep.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nCookie: sid=943be7a0-56ac-11ee-9f72-099c9e801bb2; caf_ipaddr=10.116.88.77; country=; city=\"\"; expiry_partner=\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: openresty\r\nDate: Tue, 19 Sep 2023 05:22:53 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 476\r\nLast-Modified: Thu, 17 Aug 2023 20:30:35 GMT\r\nConnection: keep-alive\r\nETag: \"64de836b-1dc\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":476,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"d2183968f9080b37babfeba3ccf10df2","sha1":"24b9cf589ee6789e567fac3ae5acfc25826d00c6","sha256":"4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc","sha512":"0e16d127a199a4238138eb99a461adf2665cee4f803d63874b4bcef52301d0ecd1d2eb71af3f77187916fe04c5f9b152c51171131c2380f31ca267a0a46d2a42","ssdeep":"","tlshash":"4cf097192c28e27464362e96c2bdc0ba6164200236b0f422b8d4fb4f429dfe5083ac68","first_seen":"2023-03-13T06:28:57Z","last_seen":"2024-08-21T09:44:36.254707Z","times_seen":9007,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":201,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.pki.goog/gts1c3","fqdn":"ocsp.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-09-19T05:22:53.774393289Z","timestamp":1695100973774,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /gts1c3 HTTP/1.1\r\nHost: ocsp.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Tue, 19 Sep 2023 05:22:53 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"64ed688baf8887c3e918f1a762cdc5b2","sha1":"057b28a887cac1050b7c08d5647a1e4d8b416ebf","sha256":"267244dad1693002d314ef71cc0317d4d942c4740009aacafac6a6ab7900a712","sha512":"1b7650e709a622bd4c76820e354305dd75f09746509224210a7ef01eea2de83477d22a3a7ecbe1b523dfac6b1b96fed15e518283a0d04c2aacf410691b7e86d8","ssdeep":"","tlshash":"91f0dc46b8fa11cbcc3acd6c22e0ac352a21fdce21a423d228bc5688c3368d6e08414c","first_seen":"2023-09-18T16:32:54Z","last_seen":"2023-09-19T22:35:06Z","times_seen":1343,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/adsense/domains/caf.js?abp=1","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.164","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.tebsicep.com/","date":"2023-09-19T05:22:53.396Z","timestamp":1695100973396,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 14 Aug 2023 08:23:03 GMT","end":"Mon, 06 Nov 2023 08:23:02 GMT"},"fingerprint":{"sha1":"46:10:6A:3E:F0:E9:34:E0:79:83:32:6E:2E:D8:2A:57:15:BD:AC:4C","sha256":"9A:34:20:16:74:4E:65:0D:99:BF:31:CA:BA:DC:32:71:67:BC:CE:94:1B:5F:F3:CD:34:B6:53:8A:B1:EE:62:BA"}}},"request":{"raw":"GET /adsense/domains/caf.js?abp=1 HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.tebsicep.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-type: text/javascript; charset=UTF-8\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"ads-afs-ui\"\r\nreport-to: {\"group\":\"ads-afs-ui\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/ads-afs-ui\"}]}\r\ndate: Tue, 19 Sep 2023 05:22:53 GMT\r\nexpires: Tue, 19 Sep 2023 05:22:53 GMT\r\ncache-control: private, max-age=3600\r\netag: \"11663888848490894793\"\r\nx-content-type-options: nosniff\r\nlink: \u003chttps://afs.googlesyndication.com\u003e; rel=\"preconnect\"\r\ncontent-encoding: gzip\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":151813,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (2067)","md5":"44fa8c833e8c682d3ba1f03dd4c4d76a","sha1":"16783091e9be8150b132b5fe3975dac2597917c9","sha256":"8691b1fbca29fd32b64f6ceb87f53183c2516f55e0f735d4c287bc42d75d9e9f","sha512":"c5fdacc878f395835d7d58f18f83aaffb8cff83828dc40f55fc267db9a0975f3db04d7035fab10216835baec2b4a8f96fb2056bf8ed17d1d1fea099660345724","ssdeep":"1536:WKQwMZS7JVcPygTqmaExzffrToFtnQxpuh3oRoC6GhxCL7fuzedgAzwGY8MFgCVc:iYglxpfRoC6GhwLDqeeGDLPmOYG","tlshash":"a6e36c9a77613422636390f4603f158fb23af959e84885f8b198d4e47cb8da91237f7c","first_seen":"2023-09-14T16:39:33Z","last_seen":"2023-09-21T14:09:20Z","times_seen":253,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":66,"dns":1,"connect":8,"send":0,"wait":59,"receive":11,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}