{"report_id":"ef4b33ad-9738-46ba-a4cd-a9fbd211b7de","version":6,"status":"done","tags":[],"date":"2024-06-17T19:25:33Z","url":{"schema":"http","addr":"gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684","fqdn":"gsf-fl.softonic.com","domain":"softonic.com","tld":"com"},"ip":{"addr":"199.232.194.133","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684","fqdn":"gsf-fl.softonic.com","domain":"softonic.com","tld":"com"},"title":"400 Invalid request (bad params)"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T13:01:04Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-06-17 18:15:38","alert_count":0,"request_count":4,"received_data":3551,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gsf-fl.softonic.com","ip":{"addr":"199.232.194.133","port":80,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2000-01-28","domain_rank":325673,"first_seen":"2018-06-07 12:50:34","last_seen":"2024-06-10 13:26:37","alert_count":0,"request_count":3,"received_data":2439,"sent_data":1339,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-17T19:25:08.736765711Z","timestamp":1718652308736,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"146FE131CF8436E3DE4832A23B351400B4819DBD9B9716302248D3AB447F000C\"\r\nLast-Modified: Sat, 15 Jun 2024 13:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3985\r\nExpires: Mon, 17 Jun 2024 20:31:33 GMT\r\nDate: Mon, 17 Jun 2024 19:25:08 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"5c35a3180482afadf4e89f4cc249fa7b","sha1":"8a088c184606fe3e4e0da8cd90b6eb5e6d30fb97","sha256":"146fe131cf8436e3de4832a23b351400b4819dbd9b9716302248d3ab447f000c","sha512":"69ceef04fe4f86da5a1c84e5d5ba164db85d4817e66cd8dabecf0df8ac7d47749f2d6cbed7ac33345f6fb6c984fe97caecec446f5a0914841ca524b9f435c8d9","ssdeep":"","tlshash":"1cf00e1210a6b8f06af101205ff9ed182c64ac9d3c1234e03ce8bdf2a4657e40f8c098","first_seen":"2024-06-15T15:57:10Z","last_seen":"2024-08-19T19:55:02.755491Z","times_seen":41629,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-17T19:25:09.19329915Z","timestamp":1718652309193,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F9A59EBEF1EE608C709B274E1C7BE1320323232CDC79B17BDBF453A5A5AEAD09\"\r\nLast-Modified: Mon, 17 Jun 2024 11:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13600\r\nExpires: Mon, 17 Jun 2024 23:11:49 GMT\r\nDate: Mon, 17 Jun 2024 19:25:09 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"9d139a09a36fce99ece1fb963d49d2a9","sha1":"a7d96d8755d02c7204c147daade1b1168a6ddb73","sha256":"f9a59ebef1ee608c709b274e1c7be1320323232cdc79b17bdbf453a5a5aead09","sha512":"2f3b4b35676cee60aa69c986ce24912bdf1e5d2f893b69833a84884b248c5b16659f4b176d5f289e4c798bc29f13bfad918894f1d1efbde50713dcde03eff35a","ssdeep":"","tlshash":"5cf0c96122e6f89099622202fcc9e20c8fd2ad7f3840a2a0256883d2e0417b283840a8","first_seen":"2024-06-17T13:51:28Z","last_seen":"2024-08-19T19:42:29.906975Z","times_seen":39533,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684","fqdn":"gsf-fl.softonic.com","domain":"softonic.com","tld":"com"},"ip":{"addr":"199.232.194.133","port":80,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-06-17T19:25:09.685Z","timestamp":1718652309685,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684 HTTP/1.1\r\nHost: gsf-fl.softonic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 Bad Request\r\nretry-after: 0\r\ncontent-type: text/html; charset=utf-8\r\naccept-ranges: bytes\r\ndate: Mon, 17 Jun 2024 19:25:09 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410025-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1718652309.348290,VS0,VE0\r\nx-fastly-version: 73\r\ncontent-length: 477\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Invalid request (bad params)","fingerprints":null,"data":{"size":477,"size_decoded":477,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"032bd8a504cae648513b69764c2d1403","sha1":"e3e0718be200bc80f0e48dfb9e5eb4c0480f0b81","sha256":"c463ac9f3fef7c8b168f01996fcc8bdb58fa8af1237ee15a0e88b510f8084be6","sha512":"e8f7c453e5014caf2575cf83a0e73075a7145976e4d4cc367117a60e7aa8d851d6fa804d1ecf858262d402d5a0a5858eebdcb243cdcea46c323edceb8a484de2","ssdeep":"","tlshash":"d8f05c6ad1a192d6d2c195c40bc1d74796e1e34f3449088d3680097febdeba8c09f29b","first_seen":"2024-08-19T19:40:29.714842Z","last_seen":"2024-08-19T19:40:29.714842Z","times_seen":1,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":14,"dns":1,"connect":15,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684","fqdn":"gsf-fl.softonic.com","domain":"softonic.com","tld":"com"},"ip":{"addr":"199.232.194.133","port":80,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-06-17T19:25:09.685Z","timestamp":1718652309685,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684 HTTP/1.1\r\nHost: gsf-fl.softonic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 400 Invalid request (bad params)\r\nConnection: close\r\nContent-Length: 477\r\nRetry-After: 0\r\nContent-Type: text/html; charset=utf-8\r\nAccept-Ranges: bytes\r\nDate: Mon, 17 Jun 2024 19:25:09 GMT\r\nVia: 1.1 varnish\r\nX-Served-By: cache-hel1410025-HEL\r\nX-Cache: MISS\r\nX-Cache-Hits: 0\r\nX-Timer: S1718652310.703399,VS0,VE0\r\nx-fastly-version: 73\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Invalid request (bad params)","fingerprints":null,"data":{"size":477,"size_decoded":477,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"6705d410216fa00814e3be9711c5d15e","sha1":"3db681b390066ed6c61f0d8dd981082d7c4538e8","sha256":"9bb4f08ccf6a94097f3431de4908f8fe35fc999c0c1c35326048f7961ce7ac5a","sha512":"d0581cd5827d47a2dbc6a8f50feabe32aea93ace818a1527360bf3ed30fb611f152475019bcf965d45335da1715549477fe1baf65509002a8811aea5821316a9","ssdeep":"","tlshash":"b0f05c6ad1e192d7d2c155c40bc1d74796d5e30b3449048d3680097fdbcefa8c49f297","first_seen":"2024-08-19T19:40:29.715665Z","last_seen":"2024-08-19T19:40:29.715665Z","times_seen":1,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":14,"dns":1,"connect":15,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"gsf-fl.softonic.com/favicon.ico","fqdn":"gsf-fl.softonic.com","domain":"softonic.com","tld":"com"},"ip":{"addr":"199.232.194.133","port":80,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684","date":"2024-06-17T19:25:10.055Z","timestamp":1718652310055,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: gsf-fl.softonic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://gsf-fl.softonic.com/6f3/b38/ff94c0989f051fdc1263aadc4d3a41c684\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 400 Invalid request (bad params)\r\nConnection: close\r\nContent-Length: 477\r\nRetry-After: 0\r\nContent-Type: text/html; charset=utf-8\r\nAccept-Ranges: bytes\r\nDate: Mon, 17 Jun 2024 19:25:10 GMT\r\nVia: 1.1 varnish\r\nX-Served-By: cache-hel1410033-HEL\r\nX-Cache: MISS\r\nX-Cache-Hits: 0\r\nX-Timer: S1718652310.067649,VS0,VE0\r\nx-fastly-version: 73\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Invalid request (bad params)","fingerprints":null,"data":{"size":477,"size_decoded":477,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"1cc87ac729e61365090a60a5d55506be","sha1":"957cb6dcbd6cd1991719b6da546a63f28e5c5820","sha256":"937e645369c5d5fb81805faca4ccf7afd09b580a9ab8908228425cc0a5d6cf2c","sha512":"69dd7f99c975e766922bb571b88c87b777544bfd5d15b599e261df36e9463583fba151321aa90227c971f8ad0b4aa42c273be874edd6a33fb8d48a19c095c537","ssdeep":"","tlshash":"84f0972ad2a092a6c2c242c40bc0d30696d1e20b3448088c3a80097f9bceaa8819f297","first_seen":"2024-08-19T19:40:29.716365Z","last_seen":"2024-08-19T19:40:29.716365Z","times_seen":1,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":2,"connect":13,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-17T19:25:11.643784568Z","timestamp":1718652311643,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2\"\r\nLast-Modified: Sat, 15 Jun 2024 17:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=17072\r\nExpires: Tue, 18 Jun 2024 00:09:43 GMT\r\nDate: Mon, 17 Jun 2024 19:25:11 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ede0b27def700f18bb6d4eb4c1d97352","sha1":"c802c366cb2eee6b9339349aa21677fdb1bd5fa5","sha256":"18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2","sha512":"b1261e87645eb6cd74edb193283924e437ec388df9d45bad1eb6840a7de3584ca9e0e7ddd04a78b542d85733e76b02f839339e75691cecaf7b1894a7cd0bd35b","ssdeep":"","tlshash":"c8f054021098f99565a306121dfbe3053fb47cf8791c9ac014e488d128a0feca7c4009","first_seen":"2024-06-15T19:33:51Z","last_seen":"2024-08-19T19:54:20.816757Z","times_seen":41892,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-06-17T19:25:11.644914692Z","timestamp":1718652311644,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"18FFB58DA62F40B37A43B0BAACEEFE8BC3EF83CCDF9EE19FF874CCB0D802C9F2\"\r\nLast-Modified: Sat, 15 Jun 2024 17:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=17072\r\nExpires: Tue, 18 Jun 2024 00:09:43 GMT\r\nDate: Mon, 17 Jun 2024 19:25:11 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ede0b27def700f18bb6d4eb4c1d97352","sha1":"c802c366cb2eee6b9339349aa21677fdb1bd5fa5","sha256":"18ffb58da62f40b37a43b0baaceefe8bc3ef83ccdf9ee19ff874ccb0d802c9f2","sha512":"b1261e87645eb6cd74edb193283924e437ec388df9d45bad1eb6840a7de3584ca9e0e7ddd04a78b542d85733e76b02f839339e75691cecaf7b1894a7cd0bd35b","ssdeep":"","tlshash":"c8f054021098f99565a306121dfbe3053fb47cf8791c9ac014e488d128a0feca7c4009","first_seen":"2024-06-15T19:33:51Z","last_seen":"2024-08-19T19:54:20.816757Z","times_seen":41892,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}