{"report_id":"ddffe1d2-2338-4dc2-a7a8-5b51e6f87d2a","version":6,"status":"done","tags":[],"date":"2024-07-22T02:18:13Z","url":{"schema":"http","addr":"114.217.18.243:8083/tPond/getPondAutomaticList","fqdn":"114.217.18.243","domain":"114.217.18.243","tld":""},"ip":{"addr":"114.217.18.243","port":0,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"final":{"url":{"schema":"http","addr":"114.217.18.243:8083/tPond/getPondAutomaticList","fqdn":"114.217.18.243:8083","domain":"114.217.18.243","tld":"243:8083"},"title":"114.217.18.243:8083/tPond/getPondAutomaticList"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T08:46:38Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-21 18:21:45","alert_count":0,"request_count":7,"received_data":6214,"sent_data":2289,"comment":"","tags":null,"fingerprints":null},{"fqdn":"114.217.18.243:8083","ip":{"addr":"114.217.18.243","port":8083,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":1634,"sent_data":791,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"114.217.18.243","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"114.217.18.243","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:48.428767173Z","timestamp":1721614668428,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"FB270CF16706247ADDE7EFD430FE667555CB37EE35EAE763593424A17C624BCD\"\r\nLast-Modified: Sat, 20 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=7465\r\nExpires: Mon, 22 Jul 2024 04:22:13 GMT\r\nDate: Mon, 22 Jul 2024 02:17:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"f58a4b489ef65eff7896802c87e363e7","sha1":"e7287b89b56c66407955bf95bd03133d2e5945d1","sha256":"fb270cf16706247adde7efd430fe667555cb37ee35eae763593424a17c624bcd","sha512":"c065e9f7dd5fe8977e62fc53b2f8f282b9822e5b2da8f892a233a215b0084cb15dcfab72538f71c8b0abfb53fca418c8387e9881640f5d7ec16e245ded101811","ssdeep":"","tlshash":"f5f00548132ebac0bf3d1a261694d5182d24fdfe140828f1ddd441e235e6f993a5c416","first_seen":"2024-07-20T23:43:01Z","last_seen":"2024-08-19T16:14:35.910582Z","times_seen":17507,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:48.447029182Z","timestamp":1721614668447,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"778D02DECABF7DFF03BF5EC4C4EB0F03AC789E89BCFE58353C266C9D66C08834\"\r\nLast-Modified: Sat, 20 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11220\r\nExpires: Mon, 22 Jul 2024 05:24:48 GMT\r\nDate: Mon, 22 Jul 2024 02:17:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"2f796f6340ac7eef4fa2891ac8f8aa1a","sha1":"27bbc7bb6314b31dcab89f198bc258b040593aa7","sha256":"778d02decabf7dff03bf5ec4c4eb0f03ac789e89bcfe58353c266c9d66c08834","sha512":"332ad8103818d77a6436e42ee756dd6f241b844dc98a7a67b52d01d5541c140e9d3ddabc315afe1c9ea0e094ffa1873c666c65f61ad0a938ca34950b4c0ef429","ssdeep":"","tlshash":"c5f0754600d4bc047fa4051b45e0c2391a30aff84e423fc039d849f1d800f796c8894d","first_seen":"2024-07-21T00:49:07Z","last_seen":"2024-08-19T16:14:10.849697Z","times_seen":22664,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:48.998627574Z","timestamp":1721614668998,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"90A7510DC4ACC5716C9A82E10DCBB6074AF14F502E3847F8B6C43CAEF244CA12\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11231\r\nExpires: Mon, 22 Jul 2024 05:24:59 GMT\r\nDate: Mon, 22 Jul 2024 02:17:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cf41dddde2cb04d4f8b233b01318bde1","sha1":"f7f9259cebf98c255ea506e7d7f0170c1e6a9604","sha256":"90a7510dc4acc5716c9a82e10dcbb6074af14f502e3847f8b6c43caef244ca12","sha512":"4c2d94c71c8e1bd65093b844aa45804a09334553e0948cded51668eaa9c61d36309a9306f6f166c06c6207b28e352c84358c476c9369607f05d179c7adf14799","ssdeep":"","tlshash":"25f0058602e33e4167e50b11347ef5bd3f759bd87505a9a0704041d17820fea4086055","first_seen":"2024-07-21T01:23:18Z","last_seen":"2024-08-19T16:13:56.5128Z","times_seen":15508,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:49.420410811Z","timestamp":1721614669420,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9ABD3B5F4DE73D55417DCEC4BBF72B38CC201842360ED32D763A4C65E35819D8\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2507\r\nExpires: Mon, 22 Jul 2024 02:59:36 GMT\r\nDate: Mon, 22 Jul 2024 02:17:49 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"00accea3155d7ac730285aec633670a9","sha1":"fee8ca25b96d24d0c10951f7f4ea28389020e88d","sha256":"9abd3b5f4de73d55417dcec4bbf72b38cc201842360ed32d763a4c65e35819d8","sha512":"bc807bf3a67a1a6c51ea492311a92b4e90031bc0233f7038d9605ed958583ca711b6d7fba4b3310c3773577db1f735af10596ac3e0f10392ea1f730a650979d2","ssdeep":"","tlshash":"8df00e831193bd45bab20c3559adfc683d37ff9c395045e670b042d66619ff618c09c9","first_seen":"2024-07-20T22:48:17Z","last_seen":"2024-08-19T16:14:56.436584Z","times_seen":18141,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"114.217.18.243:8083/tPond/getPondAutomaticList","fqdn":"114.217.18.243:8083","domain":"114.217.18.243","tld":"243:8083"},"ip":{"addr":"114.217.18.243","port":8083,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-22T02:17:49.198Z","timestamp":1721614669198,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /tPond/getPondAutomaticList HTTP/1.1\r\nHost: 114.217.18.243:8083\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 405 \r\nAllow: POST\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Language: en-US\r\nContent-Length: 343\r\nDate: Mon, 22 Jul 2024 02:17:49 GMT\r\n","headers":null,"cookies":null,"status_code":"405","status_text":"","fingerprints":null,"data":{"size":343,"size_decoded":343,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (343), with no line terminators","md5":"168474f40ec908e4f9e5a8bf57d3197f","sha1":"622b0e6ddf4e21dab193e11998c574a856788183","sha256":"b36a7d32a97f606d46a8aa4f9ec8e6e1a8014e7f4814e2b9213a89a352534c8c","sha512":"80bbd3a8b2fc1d9f1ebf6836f713a5d1010aeead806e1971feb319706715cdc555b155f298507ced8b0fe475fc5274c75cb84ed84e8ade5490dc4a5dbcc18a28","ssdeep":"","tlshash":"80e02867173602d03c5e4dc04db1416d0e94e1b2117343d038c441f727cd108cf35c45","first_seen":"2024-08-19T16:08:10.409389Z","last_seen":"2024-08-19T16:08:10.409389Z","times_seen":1,"resource_available":false,"data":null}},"time_used":810,"timings":{"blocked":261,"dns":0,"connect":271,"send":0,"wait":275,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"114.217.18.243","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"114.217.18.243:8083/favicon.ico","fqdn":"114.217.18.243:8083","domain":"114.217.18.243","tld":"243:8083"},"ip":{"addr":"114.217.18.243","port":8083,"asn":4134,"as":"Chinanet","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://114.217.18.243:8083/tPond/getPondAutomaticList","date":"2024-07-22T02:17:49.901Z","timestamp":1721614669901,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 114.217.18.243:8083\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://114.217.18.243:8083/tPond/getPondAutomaticList\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 \r\nLast-Modified: Sun, 18 Feb 2024 06:25:16 GMT\r\nAccept-Ranges: bytes\r\nContent-Type: application/octet-stream;charset=UTF-8\r\nContent-Length: 946\r\nDate: Mon, 22 Jul 2024 02:17:49 GMT\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":946,"size_decoded":946,"mime_type":"application/octet-stream; charset=UTF-8","magic":"MS Windows icon resource - 1 icon, 16x13, 32 bits/pixel","md5":"0488faca4c19046b94d07c3ee83cf9d6","sha1":"02fb8c5e4c3d113f310651a4d021aecc68f79d54","sha256":"a3fe67e3549fdbc5819762b43c7efd93b1caea734f87a33c909a4e4b2ba4e32b","sha512":"8880c835d65112cc4cb4df4167bd77b504e7427b63962127a7efc4c1229d691b76dcc62e25b1a15aa5cff127a353260deeab475fb731aa3cab6bdc46868e7c9e","ssdeep":"","tlshash":"4a119e103951269acd641c3be9469914576cd8d6fbf8c65cdf7150070c6502c8f4eebc","first_seen":"2023-04-05T09:40:38Z","last_seen":"2026-04-04T10:35:06.186855Z","times_seen":1162,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"114.217.18.243","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:51.353408027Z","timestamp":1721614671353,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=14476\r\nExpires: Mon, 22 Jul 2024 06:19:07 GMT\r\nDate: Mon, 22 Jul 2024 02:17:51 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:51.356126808Z","timestamp":1721614671356,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=14476\r\nExpires: Mon, 22 Jul 2024 06:19:07 GMT\r\nDate: Mon, 22 Jul 2024 02:17:51 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T02:17:51.36204279Z","timestamp":1721614671362,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=14476\r\nExpires: Mon, 22 Jul 2024 06:19:07 GMT\r\nDate: Mon, 22 Jul 2024 02:17:51 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}