{"report_id":"17f361fb-c2b7-4608-a1f7-b8b6c480f2d4","version":6,"status":"done","tags":[],"date":"2023-12-05T11:13:41Z","url":{"schema":"http","addr":"itarmy-ua.tech/","fqdn":"itarmy-ua.tech","domain":"itarmy-ua.tech","tld":"tech"},"ip":{"addr":"195.149.114.22","port":0,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"final":{"url":{"schema":"https","addr":"parkpage.nic.ua/?fqdn=itarmy-ua.tech","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"title":"Parkpage NIC.UA"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:01:37Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2023-12-05 06:24:59","alert_count":0,"request_count":1,"received_data":86786,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"img.nic.ua","ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"domain_registered":"2007-10-04","domain_rank":996390,"first_seen":"2015-02-09 20:11:21","last_seen":"2023-12-03 04:05:23","alert_count":0,"request_count":10,"received_data":21741,"sent_data":4517,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.211.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2023-12-05 06:14:20","alert_count":0,"request_count":2,"received_data":48285,"sent_data":1056,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.138","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-12-05 07:37:50","alert_count":0,"request_count":1,"received_data":2162,"sent_data":465,"comment":"","tags":null,"fingerprints":null},{"fqdn":"itarmy-ua.tech","ip":{"addr":"195.149.114.22","port":80,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":572,"sent_data":397,"comment":"","tags":null,"fingerprints":null},{"fqdn":"parkpage.nic.ua","ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"domain_registered":"2007-10-04","domain_rank":0,"first_seen":"2012-08-02 11:21:51","last_seen":"2023-12-05 09:20:06","alert_count":0,"request_count":3,"received_data":5028,"sent_data":1525,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":36780,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.077285+0000\",\"flow_id\":199372480064997,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":36780,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":62639,\"rrname\":\"parkpage.nic.ua\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":86,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.077285+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":43324,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.077449+0000\",\"flow_id\":2227619245993609,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":43324,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":44837,\"rrname\":\"parkpage.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":86,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.077449+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":43231,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.645918+0000\",\"flow_id\":1610286416714526,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":43231,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":39275,\"rrname\":\"img.nic.ua\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.645918+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":40812,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.646089+0000\",\"flow_id\":467318309837769,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":40812,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":41860,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.646089+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":54767,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.647889+0000\",\"flow_id\":1322444138397908,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":54767,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":2,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":21608,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":2}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":1,\"bytes_toserver\":175,\"bytes_toclient\":94,\"start\":\"2023-12-05T11:10:18.966868+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":46070,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.652248+0000\",\"flow_id\":934791140275160,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":46070,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":30988,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.652248+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":38883,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.654937+0000\",\"flow_id\":1403256108154457,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":38883,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":26618,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.654937+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44129,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.656495+0000\",\"flow_id\":1026443594826863,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":44129,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":16017,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.656495+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":44888,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.668916+0000\",\"flow_id\":94150076282100,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":44888,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":42007,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.668916+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55001,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.677318+0000\",\"flow_id\":1551610720966086,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":55001,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":60139,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.677318+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:30Z","timestamp":1701774810,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":50090,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:30.903108+0000\",\"flow_id\":396921648367556,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":50090,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":52991,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:30.903108+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:31Z","timestamp":1701774811,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":37730,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:31.031788+0000\",\"flow_id\":536377089031212,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":37730,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":39782,\"rrname\":\"parkpage.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":86,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:31.031788+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:31Z","timestamp":1701774811,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":46894,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:31.032083+0000\",\"flow_id\":1238443180653907,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":46894,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":25324,\"rrname\":\"img.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":81,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:31.032083+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:13:31Z","timestamp":1701774811,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":38582,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:13:31.097290+0000\",\"flow_id\":1058172665822218,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.178\",\"src_port\":38582,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":46206,\"rrname\":\"parkpage.nic.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":86,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:13:31.097290+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"parkpage.nic.ua/?fqdn=itarmy-ua.tech","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T02:09:27.812438Z","times_seen":14041081,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parkpage.nic.ua/?fqdn=itarmy-ua.tech","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T02:09:27.812438Z","times_seen":14041081,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Q2DHSXH1TQ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fe0fc5963b0a9e7e339c17ad81b5e9dc","sha1":"a5666e480ff4c5604d316180455bd057482e5fca","sha256":"7ae6c27d4cb66c1397dffa700a85e8b09f0de1f369465a1619b1bcf9c2c8b89a","sha512":"fef51bf4ac399d49f721d6c1dfa68a5eba6abf5c9d8101dab04cc85e0a19c5b9fa8e1c2df1d7723f3729d1a749733b778c4229be3c86d7bdfc841b40101020e2","ssdeep":"3072:YHl+2dZAlCIWYMvUyO1jEdypDDMlM66OhoO7DfFWkipF8rIx72WRqj4X:8jfIHMvUy40A66OhoO7DfYXpurIx7/","tlshash":"763408d973c3706682a7b479503f024be5bb6c92b44ccc98e189c9d42e74a9a417bf7c","size":249820,"data":"","first_seen":"2023-12-05T12:13:48Z","last_seen":"2023-12-05T12:13:48Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"5531a5834816222280f20d1ef9e95f69","sha1":"445cd2fd3273962bdf09425109a2d09f7170e837","sha256":"d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f","sha512":"a1e11c5d0b12fb74fd97f392c088b16ea641fcc55f80c8b0d4e5e1a2903887b70173c487ab994516f26f0b13a72da36f61ac00b5644bb1a2e9a78cbd4a4c4dc9","ssdeep":"","tlshash":"a830000000000000000c00000000000000000000000000000000000000000000000f00","size":4,"data":"","first_seen":"2023-03-12T12:17:15Z","last_seen":"2026-04-19T20:35:02.963425Z","times_seen":7118,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"itarmy-ua.tech/","fqdn":"itarmy-ua.tech","domain":"itarmy-ua.tech","tld":"tech"},"ip":{"addr":"195.149.114.22","port":80,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T11:13:29.939Z","timestamp":1701774809939,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: itarmy-ua.tech\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Tue, 05 Dec 2023 11:13:24 GMT\r\nContent-Type: text/html\r\nContent-Length: 138\r\nConnection: keep-alive\r\nLocation: https://parkpage.nic.ua/?fqdn=itarmy-ua.tech\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE, HEADER\r\nAccess-Control-Allow-Headers: Content-Type, Accept-Language, Authorization\r\nAccess-Control-Allow-Credentials: true\r\nVary: Origin\r\nX-Frame-Options: DENY\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":null,"data":{"size":138,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"aff950cab4c0265e21d401db15f1026d","sha1":"f03e18461817f7a6546c8bf8fa8d686d7e30aca0","sha256":"753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0","sha512":"a1f0f6f3dd6788a1d7c922c6a8fc81d4709dbd0bf28433023fb8fbd151f645daa096c6e9dd670fb7f86c1699942514a11c183aa09f0018142f823668fb2a0aa2","ssdeep":"","tlshash":"a5c092af79533c8cc8f33a3954c3a298d1ed92726ba8960096408553b2c72568ec3363","first_seen":"2023-04-05T03:40:47Z","last_seen":"2026-03-26T18:06:03.990474Z","times_seen":38808,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":63,"dns":1,"connect":69,"send":0,"wait":58,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parkpage.nic.ua/?fqdn=itarmy-ua.tech","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T11:13:30.092Z","timestamp":1701774810092,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /?fqdn=itarmy-ua.tech HTTP/1.1\r\nHost: parkpage.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 05 Dec 2023 11:13:24 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.0.7\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE, HEADER\r\nAccess-Control-Allow-Headers: Content-Type, Accept-Language, Authorization\r\nAccess-Control-Allow-Credentials: true\r\nVary: Accept-Encoding, Origin\r\nX-Frame-Options: DENY\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1781,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, Unicode text, UTF-8 text","md5":"5d8c0b29e847d7089287bdc89d5d5836","sha1":"5aa3e15e5158803d4f93cea12a995b31bb2ecb50","sha256":"4558ee9f3070e8470e09e86e3724d688c3392696f4bb549fe65b42bfe43f9b43","sha512":"bc87ca38e106d6a784dde63dc2e0aa9b016af990ea59b168a0ec56658c1127bc5131f06f4972186827fd1d9835ed0177290f8ddbfa34d036e8fc8f858552082a","ssdeep":"192:UZki9iV5mPWERJuTurOYweJwxuAJwxuRT/wxOu5y:+iVSWEboUOteJwxdJwxyT/wxOEy","tlshash":"50d11cb6669cec7f012253c6b430ff5db55f4d39a9d2a0e6f0ff01655282dd0aa4206e","first_seen":"2023-12-05T12:13:48Z","last_seen":"2023-12-05T12:13:48Z","times_seen":1,"resource_available":false,"data":null}},"time_used":427,"timings":{"blocked":176,"dns":1,"connect":58,"send":0,"wait":60,"receive":0,"ssl":129},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-Q2DHSXH1TQ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.679Z","timestamp":1701774810679,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=G-Q2DHSXH1TQ HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\nexpires: Tue, 05 Dec 2023 11:13:24 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 86185\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86185,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (3034)","md5":"fe0fc5963b0a9e7e339c17ad81b5e9dc","sha1":"a5666e480ff4c5604d316180455bd057482e5fca","sha256":"7ae6c27d4cb66c1397dffa700a85e8b09f0de1f369465a1619b1bcf9c2c8b89a","sha512":"fef51bf4ac399d49f721d6c1dfa68a5eba6abf5c9d8101dab04cc85e0a19c5b9fa8e1c2df1d7723f3729d1a749733b778c4229be3c86d7bdfc841b40101020e2","ssdeep":"3072:YHl+2dZAlCIWYMvUyO1jEdypDDMlM66OhoO7DfFWkipF8rIx72WRqj4X:8jfIHMvUy40A66OhoO7DfYXpurIx7/","tlshash":"763408d973c3706682a7b479503f024be5bb6c92b44ccc98e189c9d42e74a9a417bf7c","first_seen":"2023-12-05T12:13:48Z","last_seen":"2023-12-05T12:13:48Z","times_seen":1,"resource_available":true,"data":null}},"time_used":171,"timings":{"blocked":47,"dns":3,"connect":20,"send":0,"wait":28,"receive":19,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_tm.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.694Z","timestamp":1701774810694,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_tm.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 199\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-c7\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":199,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with no line terminators","md5":"594f2544a8ba80687d7f13609b3b5581","sha1":"a28b1791dec82a98f17ad8a9162aec111cb8e1a4","sha256":"2ec72ad876dcb4e954b3705501558823d0fe433791629c51874adb78eca1f8e0","sha512":"daf8b0c5889d08fa381f1801e4bf9184cc74d6d151e5024ea9d4fe38a2119e6e8fef30bb7cdb86836553974d1c1ef1988e02a225ce01375f95aa4b7eaa351f4e","ssdeep":"","tlshash":"64d022baee085d24c908d124e2fca327e06d11ea9a5c80ade9901610b0446ab3832bac","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.970461Z","times_seen":102,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":65,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_tw.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.699Z","timestamp":1701774810699,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_tw.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 523\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-20b\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":523,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (523), with no line terminators","md5":"1685aa21959824410c464e9965463af0","sha1":"b6db5def1a83c0597eb30da1b1b52428726a9445","sha256":"f2fc3ecfb218fd9497ca915c99d16a3336f74ef29a1768964c0da35ea108aded","sha512":"a41a5e303f5db6ba499c7e2be0690711af023924ee3768b1f83346ade9054114387d9b0641612c4bf3a670f9f960bd069c33661e682d356ee1677fd039aa76da","ssdeep":"","tlshash":"faf0c0e652b434fc754fcba3bf385091420930a77b969ec0d1480b24de40aeb19d4d44","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.96793Z","times_seen":102,"resource_available":false,"data":null}},"time_used":90,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_fb.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.703Z","timestamp":1701774810703,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_fb.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 378\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-17a\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":378,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (378), with no line terminators","md5":"532b6456a22679987344ec79c3b286d7","sha1":"e34e79642d1f6eb93a3ed00fcbcf808ea8d41afc","sha256":"0238dd7932cf4dc3849b9dc2fbd9be4e1809590dee9e2ac7ef5ad5eee17e3585","sha512":"93a5566597c2968c4c7ddcfc31e7765eaa579fffa8c2f02a2f2b14f5cfeb400420f059c7eb025b1033b715cc1bd37b399e9e446e79e8af35ed3cf5ea83733856","ssdeep":"","tlshash":"85e068c24705684843818676b52c3115392f70fbeb580d7ce090c649a4d0aba7e2ae18","first_seen":"2023-05-01T19:24:12Z","last_seen":"2026-04-19T04:53:25.641199Z","times_seen":150,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":56,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_i.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.704Z","timestamp":1701774810704,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_i.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 583\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-247\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":583,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (583), with no line terminators","md5":"5edaac5f9bf8b89c434f2f043d7f28e2","sha1":"2a104685f97535104b01efbae1c803dd2722c66d","sha256":"f4b72ef15c21a4827162f20def4c244e7ebb14fdc34ea59678d6b90fb05dc5a0","sha512":"87a8dd5cd82d1889aea954e4595492dc764d9ed41b60460f27a301bb328e2a06b3ce7d35dd94477c1dbcb031c07fbf69e3a295807edd69cdcd748fe4d29a7271","ssdeep":"","tlshash":"84f0ac9a10244bac88cdc01d6b2118e2133671d6ba39a58fa2ce1754d817ad7f404ddc","first_seen":"2023-05-01T19:24:12Z","last_seen":"2026-04-19T04:53:25.645274Z","times_seen":150,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":55,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/logo.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.683Z","timestamp":1701774810683,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/logo.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2687\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-a7f\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2687,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (2687), with no line terminators","md5":"82749c5aa21de1c9aca684d20f4382aa","sha1":"83776a6c100e2402e5646ad393e686f67f727fe0","sha256":"8561a31766341e9a503256274c814ea26388bd3744c93694fe6c81ca49d1099b","sha512":"fa8df26381b39cac4f55c1e80c7963a8398beb2e13bd7c46a33a73334825e04a3ba0128bfd4bed16037c154ff1cfe4034cb73f19d84a1347ba891aa37f16ae26","ssdeep":"","tlshash":"e65174c42f20c2dc2bdd8cbcef7a6addb51bb4fa3a60c184d65eca05545d9d8f140484","first_seen":"2023-05-01T19:24:12Z","last_seen":"2026-04-19T04:53:25.637013Z","times_seen":179,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":78,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_home.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.687Z","timestamp":1701774810687,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_home.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 303\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-12f\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":303,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (303), with no line terminators","md5":"71720c8bbc59c9ab483ddb298b2fd381","sha1":"5e53fafaf66dc39f4f0ffca365ba30a9a5b0eddf","sha256":"a122d5ba8adfc8ab10a1d603bdf5c37c95eedb81066412eefdfd05ae76fdb6de","sha512":"f57f659f81442a3b21f49f63cfd7e9898e7982b4ee8808f3a73d15872847415602e6266887d49f11ff8938d5833a6cec8a7404849196258cff165a1c4edb93be","ssdeep":"","tlshash":"91e0c2a8f34618b8961e850069ac6a4d144970c523a84ecda5a11723b2133fe1428658","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.968915Z","times_seen":102,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":74,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_cloud.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.689Z","timestamp":1701774810689,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_cloud.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 345\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-159\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":345,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (345), with no line terminators","md5":"83e9694d02d65439cc12ab42ad2b8ea6","sha1":"7c4e161c990ea1f608e5345736c80bd998e3b441","sha256":"6213bbb1faaa3bb1bce80aaa621a00e7e2b697caa4c4fee8063b72624cf42b6a","sha512":"eef3efc503b5b5e168867b7f97068dc75f7ac686eb7020275d6d46cb30d8114fa16031a81643416633fceb93617a49381b031c5c9adc8debf4b4d2498963cc9f","ssdeep":"","tlshash":"cee020b06250753ca55c8907e97c2e720425f4f56ecd0dddd49e56a4e241ad97858500","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.96685Z","times_seen":102,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":74,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/images/ic_message.svg","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.906Z","timestamp":1701774810906,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/images/ic_message.svg HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://img.nic.ua/f/styles/main.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:25 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 307\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\netag: \"628b9bd0-133\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":307,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (307), with no line terminators","md5":"a75aab07420def5df52d4406346fc0a3","sha1":"1bca9aba16b17f3377e32ee84aef45c0fce099f0","sha256":"cac8d45a684827ba3c90070f9958248e97fc2fc56b1a301e94fbddfa8f933064","sha512":"7e6aa6ebefe8e67123b7bd6042f424d5c20b5d8a2b53b971bb25708469ec1ac2795b27b895c01bda6e7a62811d13310872ed5e341dff0cfbf84f296008e49a6f","ssdeep":"","tlshash":"ebe0c24ac2844a2cbd2a86a1e3187239523e12a3879c7349e57d1170a64825e687baec","first_seen":"2023-05-01T19:24:12Z","last_seen":"2026-04-19T04:53:25.642037Z","times_seen":149,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.211.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.913Z","timestamp":1701774810913,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://parkpage.nic.ua\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23040\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 04 Dec 2023 21:59:03 GMT\r\nexpires: Tue, 03 Dec 2024 21:59:03 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 02 May 2023 15:07:25 GMT\r\ncontent-type: font/woff2\r\nage: 47662\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23040,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\\012- data","md5":"de69cf9e514df447d1b0bb16f49d2457","sha1":"2ac78601179c3a63ba3f3f3081556b12ddcaf655","sha256":"c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49","sha512":"4aebb7e54d88827d4a02808f04901c0d09b756c518202b056a6c0f664948f5585221d16967f546e064187c6545acef15d59b68d0a7a59897bd899d3e9dda37b1","ssdeep":"384:adpABC4a0HkBpR1HWtGu06B6lsoAKiwY0HcLKglV6Z+DVb35PJZDdiZeJ1vqYg:0AHa0Ezf2tZn6lsoABwTKK46ZQb3V7wD","tlshash":"fca2e1c05cc1e2d4ae02daf7fda5a4eab4e2f01123a8f65f8f114b75d505993640fe01","first_seen":"2023-04-05T13:28:45Z","last_seen":"2026-04-22T02:10:06.021966Z","times_seen":142976,"resource_available":true,"data":null}},"time_used":85,"timings":{"blocked":36,"dns":1,"connect":8,"send":0,"wait":9,"receive":3,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.211.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.919Z","timestamp":1701774810919,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://parkpage.nic.ua\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 23580\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Nov 2023 04:00:51 GMT\r\nexpires: Fri, 29 Nov 2024 04:00:51 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 02 May 2023 15:17:22 GMT\r\ncontent-type: font/woff2\r\nage: 457954\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23580,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\\012- data","md5":"e1b3b5908c9cf23dfb2b9c52b9a023ab","sha1":"fcd4136085f2a03481d9958cc6793a5ed98e714c","sha256":"918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537","sha512":"b2da7ef768385707afed62ca1f178efc6aa14519762e3f270129b3afee4d3782cb991e6fa66b3b08a2f81ff7caba0b4c34c726d952198b2ac4a784b36eb2a828","ssdeep":"384:dRkIAJ8pVwWTW5VVjdVn8+2yvAMdriCEOY0kfW9GkAPqpPHi2vUuUSzB8:dKIAJ8pVHTZ+riY9oCpPHiodUeK","tlshash":"91b2e1ce5d546e3a8028213785c17b488273572e9edf42c6dd83a6263a7092cfd3d96e","first_seen":"2023-04-05T13:28:45Z","last_seen":"2026-04-22T02:10:06.000525Z","times_seen":195637,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":38,"dns":4,"connect":7,"send":0,"wait":8,"receive":3,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/favicon.ico","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:31.036Z","timestamp":1701774811036,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nCookie: _ga_Q2DHSXH1TQ=deleted\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:25 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Tue, 18 Aug 2015 08:24:00 GMT\r\netag: \"55d2eba0-47e\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\\012- data","md5":"96b7a72fd7e4dd5e82631dc01105aff0","sha1":"116963d632c83adc2c7a31ebcbac1c4cec18e6af","sha256":"66a22f390e8462ab62f359b0dca33d5d2498c9cab058f44c83f1b2fe18ab6a62","sha512":"724f6920258b1b65e303f48c465c0026c808fca10a229704894a2dd5f2d1e83701402645a714f4d01ebea5d4c1f1d535740e8ad186e70e13a3db4242a514a791","ssdeep":"","tlshash":"24216943966dca8fe80814f1c35e3dfc3c8a4cd0caa969077080fe683cbe3251455721","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.974696Z","times_seen":109,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parkpage.nic.ua/apple-touch-icon.png","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:31.034Z","timestamp":1701774811034,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: parkpage.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/?fqdn=itarmy-ua.tech\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Moved Temporarily\r\nServer: nginx\r\nDate: Tue, 05 Dec 2023 11:13:25 GMT\r\nContent-Type: text/html\r\nContent-Length: 138\r\nConnection: keep-alive\r\nLocation: https://parkpage.nic.ua/?fqdn=parkpage.nic.ua\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE, HEADER\r\nAccess-Control-Allow-Headers: Content-Type, Accept-Language, Authorization\r\nAccess-Control-Allow-Credentials: true\r\nVary: Origin\r\nX-Frame-Options: DENY\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Moved Temporarily","fingerprints":null,"data":{"size":138,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with CRLF line terminators","md5":"aff950cab4c0265e21d401db15f1026d","sha1":"f03e18461817f7a6546c8bf8fa8d686d7e30aca0","sha256":"753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0","sha512":"a1f0f6f3dd6788a1d7c922c6a8fc81d4709dbd0bf28433023fb8fbd151f645daa096c6e9dd670fb7f86c1699942514a11c183aa09f0018142f823668fb2a0aa2","ssdeep":"","tlshash":"a5c092af79533c8cc8f33a3954c3a298d1ed92726ba8960096408553b2c72568ec3363","first_seen":"2023-04-05T03:40:47Z","last_seen":"2026-03-26T18:06:03.990474Z","times_seen":38808,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"parkpage.nic.ua/?fqdn=parkpage.nic.ua","fqdn":"parkpage.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"195.149.114.22","port":443,"asn":31044,"as":"Tov Dergachi.net","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:31.097Z","timestamp":1701774811097,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /?fqdn=parkpage.nic.ua HTTP/1.1\r\nHost: parkpage.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://parkpage.nic.ua/?fqdn=itarmy-ua.tech\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: _ga_Q2DHSXH1TQ=GS1.1.1701774811.1.0.1701774811.0.0.0; _ga=GA1.1.493637839.1701774811\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 05 Dec 2023 11:13:25 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Powered-By: PHP/7.0.7\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE, HEADER\r\nAccess-Control-Allow-Headers: Content-Type, Accept-Language, Authorization\r\nAccess-Control-Allow-Credentials: true\r\nVary: Accept-Encoding, Origin\r\nX-Frame-Options: DENY\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1772,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, Unicode text, UTF-8 text","md5":"38855dcc34d0b5bb609c4dc38ea7d62f","sha1":"f0b67eb3b756f7b22fd41bae3a2bd973eca2bec4","sha256":"36c1f89fc853a53a534e4a784136de2c7ce723abaf44e8ea7dec690d870950ad","sha512":"48e5c06d8f83b67962ebf8821ee45c7dcf085c1caccdac8735c54ffa1638606e18c447b33181835a49199a62f522958c68297660af66728bc77c9bf5f03beb93","ssdeep":"192:UZki9iV5mPuIzJuTurOYweJwxuAJwxuRT/wxOu5y:+iVSuIloUOteJwxdJwxyT/wxOEy","tlshash":"37d10cb666acec7f012253c6b130ff5db95f0d39a99290e2f5ff01265282dd0aa5205e","first_seen":"2023-04-08T13:21:09Z","last_seen":"2024-08-21T09:34:41.975989Z","times_seen":107,"resource_available":false,"data":null}},"time_used":61,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":60,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Lato:wght@400;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.138","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.674Z","timestamp":1701774810674,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /css2?family=Lato:wght@400;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 05 Dec 2023 11:13:24 GMT\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1530,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1566), with no line terminators","md5":"bef54a4f8ad5d25fc816b34ad3298c30","sha1":"6e7414798c5ddeccd9b28f79316617dbe59c30ae","sha256":"6f1630b5aa4ebf650967d76a891d2690f3ad4478da4875b9ad564335c40366c3","sha512":"f8c9652ca6d1df033e6ad9a1cbffa9c23a67b0cbe7c2b6d770ecb29944b42c64bd7e31f214eae4b9f18766df03282f53f43116c65384d4a722f959e0b4317b93","ssdeep":"","tlshash":"33314881092b7508e6830ed223da7a31fe0e776560715232affe14da6ccbc6a5361f5d","first_seen":"2023-05-05T08:46:35Z","last_seen":"2024-08-21T09:40:25.707722Z","times_seen":352,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":27,"dns":1,"connect":8,"send":0,"wait":25,"receive":0,"ssl":53},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.nic.ua/f/styles/main.css","fqdn":"img.nic.ua","domain":"nic.ua","tld":"ua"},"ip":{"addr":"159.223.1.62","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://parkpage.nic.ua/?fqdn=itarmy-ua.tech","date":"2023-12-05T11:13:30.676Z","timestamp":1701774810676,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.nic.ua","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 13 Dec 2022 00:00:00 GMT","end":"Thu, 28 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BF:64:22:01:16:4B:EC:E2:23:30:16:7D:9B:45:81:23:8A:3C:0E:08","sha256":"1D:A6:02:40:16:BC:EE:45:D7:72:87:A8:E4:D3:D5:B4:07:EB:F9:15:32:2A:7F:85:37:59:ED:6F:1C:A5:3C:09"}}},"request":{"raw":"GET /f/styles/main.css HTTP/1.1\r\nHost: img.nic.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://parkpage.nic.ua/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:13:24 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 23 May 2022 14:36:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"628b9bd0-32c0\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12992,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"14a4f96cc53575775f9b58fe8bc40fc4","sha1":"1cfa5c76c7450d3fa080c2f785c6c5a5c6227b06","sha256":"fecb4395258119028558fd21d0160e43e51a52b2d93638ed090808d81dd4b41e","sha512":"1137c762e236bd2dcc1408c622e64d9ff138f538933b91eee61feeb2ed094676b0cf67f5ed396bef81cea05933e8647bdd1bec8807d701755e8f37b818442e55","ssdeep":"192:Q4ei79ldIAK+E/GGzn4oeu6a5O8IG2ATjexvXyRaaK9X8:QsdDYuqnZ6a5YJAT8M","tlshash":"6d42769623741a00b5ae8f6577ae876173484013920df9f9b8ce11dccf89798d3a2f8d","first_seen":"2023-05-01T19:24:12Z","last_seen":"2024-08-21T09:34:41.976565Z","times_seen":82,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":82,"dns":1,"connect":29,"send":0,"wait":30,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}