{"report_id":"18aeeced-eaf5-4892-b615-aba4294733b2","version":6,"status":"done","tags":[],"date":"2026-04-29T15:24:09Z","url":{"schema":"http","addr":"l7srv.su","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.2.227","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"title":"Just a moment...","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"l7srv.su","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.2.227","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-03T15:24:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":4,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.217431+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1087},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":777,\"bytes_toclient\":4682,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.232770+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":25,\"pkts_toclient\":55,\"bytes_toserver\":2626,\"bytes_toclient\":79019,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":37704,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.287289+0000\",\"flow_id\":190701421350276,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37704,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":613,\"bytes_toclient\":5923,\"start\":\"2026-04-29T15:23:38.281988+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"l7srv.su","ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-24","domain_rank":3830062,"first_seen":"2026-02-14T15:43:27.615428Z","last_seen":"2026-03-27T16:58:09.372059Z","alert_count":25,"request_count":6,"received_data":245696,"sent_data":2976,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":11393,"first_seen":"2021-10-20T05:02:03Z","last_seen":"2026-04-26T23:17:05.649169Z","alert_count":0,"request_count":6,"received_data":706911,"sent_data":4401,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b5692a8fdc70d7f24d9e5a7a6cfd113f","sha1":"e89c24a0c88c6b7df61753e1bbacf8963f8abcec","sha256":"a067c9222aa0d644b062356620251f690a83039c6294af818c57d73e96dd7d83","sha512":"c3a5302ab4f36e0af85ed0272399b4a12e8766adab7126fb3b1ab3605187d9dbad7d8b1b603dddb194be1fa42b86bef2a0fd731002edda73bb9e1b2469383dca","ssdeep":"","tlshash":"5501bd6effd8a3a21360e1ea0dba7345674afc80651427448d40a5db3d39c49602fbbd","size":781,"data":"","first_seen":"2026-04-29T14:39:00.575361Z","last_seen":"2026-04-29T15:30:00.183583Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6293aacbd699475d8a835c34ae0dfb1a","sha1":"c1cec140763781edf3ede56c0f8aae4dd2b6427b","sha256":"d021ac8bfd8030d7553dc7d4c607369e5fcf7531b7a00ad91e1eecbe65e0fd88","sha512":"d8d4fe20c10cc46621d45e168a2acaf5ba1dd1bdf2f6cd85ee77a0196d7eefe9d63ec6e27f3a247c08f98b5c338bf9260dcf4f33c7f5610ba55ce750e4190719","ssdeep":"3:N/BKL1Xgqr:eL1wqr","tlshash":"135504c0544030744c50d400d3541c5d5017140014ff1441745d04d51f7051000505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.295892Z","last_seen":"2026-04-29T15:24:31.295892Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f013437672a645ceae33fbb836d77f5c","sha1":"b68097c43cae30121699db2d73f3e69c3e7dec54","sha256":"7f1e39967faf10e7005ba8e000bb104ae4dd19fa00f6cd8976b34af4f1ee8d6d","sha512":"98262f17d03c73b32e96353da1ed9260c86e5dd8838b4714d79d7d9e3b85db198630c3464643c8d54219e17520c5f14c0d0253adcd22cbb08aea5918a50e1808","ssdeep":"3:N/BKL1Xgq0n:eL1wq0","tlshash":"c75504c054c030744d50f400d37414555015440014751441745d04d41f7010004105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.297061Z","last_seen":"2026-04-29T15:24:31.297061Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"951907a1049b25d41fece8f6701847d6","sha1":"99517fb26e5b11679ae0155cc53115c087c43611","sha256":"3871aa267ae3f5c84041a73c09d900b0e42ad6a04719572b02dd241ba618366e","sha512":"ef6f09dbdf44106a4686aad7192dd72c54f0d6f5a94b36589b43cc85f977e6238fb9c0e29ad06b8941b1ede8d37d76a5ecaea63410feaafc21e159d13e476196","ssdeep":"3:N/BKL1Xgq3n:eL1wq3","tlshash":"b15504c0544030704c50f405d5541c557015044014f70405745d04f4177110000705c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.298111Z","last_seen":"2026-04-29T15:24:31.298111Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/0b8fb825cb67/api.js?onload=cFRiY3\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7fc36942da2feaddccfb76c68dc163b8","sha1":"3cf2c3600df9b3568edee8109ad843904b355856","sha256":"21c56a647ffdf4589375171c767dbe495ca16af374f0586ef7e7043d149862f2","sha512":"7a0ec32f8e8e3c7a3dba1388ec1582f48a98c27d5ae41d22e42979375fb007ccc8c7cf797a173172e0a129b56632ee0506185ed38333bfd2ad8bf75175ef5a4e","ssdeep":"768:RCF+72yM/vC9lEvpepYszeGiLcUOVyuOjK1midzGWbrsx1cY1DCPfI1lgiaZnd33:T2X/vC9lEvUDzeGk17jK8izs+/","tlshash":"79334b583256793266d880e1717b63437326793af94ccc50e427cd66266cecad233fba","size":52479,"data":"","first_seen":"2026-04-20T10:29:43.081202Z","last_seen":"2026-04-30T02:41:50.568064Z","times_seen":6619,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"2329b6ed00f20398bdb6d35d57dbc444","sha1":"7946ec7e9e10292f1f090c0131960a2592b58859","sha256":"f2d5d1e174208473bc9a6f0c7c105252d67cfa4b4579bf7ad31321fa85a2245b","sha512":"44bc917482319be298a8f40533cf586aabc0d3c8960a6fc50edc6ab24e2952433b0edd0af162c5e9638521a6bae768368a37594ea4848de1dcfb026641cca692","ssdeep":"3:N/BKL1Xgqzc:eL1wqzc","tlshash":"6b5504c0f44030744c51dc00d75c5c55501544403475144174fd04d41f7010011305c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.299194Z","last_seen":"2026-04-29T15:24:31.299194Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"54381011c4f853c2193b321967b28a64","sha1":"c56f713317b449ff52a7ce85f5ebf2e92abb9d8f","sha256":"a1378ada487ca0d72e452cbdb8a06f4d5f83a893c7844c9ca3ba7dfb8fcdafe2","sha512":"d256bf0633d4b9e3910ed3ba4db67b38cb999eba0d3c2c400858841e643cc6860c88b44ac389bcafad4830b60d65ecbe80a4c986553520464cf78de969b28728","ssdeep":"3:N/BKL1Xgqan:eL1wqan","tlshash":"685504d0545030704c50d405d35414557017040014750c01745d05d4177111000105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.300361Z","last_seen":"2026-04-29T15:24:31.300361Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6bb67df6dd6f9322e0ab5e8567ebac76","sha1":"1a6cf33ecaa7500ff31fee67438bff68faebb20c","sha256":"5f1807cd9c047dd98cf4aeda21b70cdf9fb99e2312a51f936c98544b09379d64","sha512":"7243e8a7e907813866d53c36fbf5b87649b01b766c293d4adf7ac3078b45ac656d5b658ee1039103efa243d255b3a1bbfeef65af3b3ab111d7a67d77c3214bac","ssdeep":"3:N/BKL1Xgqh6n:eL1wqM","tlshash":"b35504c054c070744c50d405d35414557015040014770401745d04dc1f7130050505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.301573Z","last_seen":"2026-04-29T15:24:31.301573Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"afee0e5d0533a42cde0dc3b22ab36977","sha1":"98ae5dfc5fbf700eba1ee9bbeff47f9cbaa24c94","sha256":"83784f0d784c5514664d54cf72cf9c0cef0d4f2a468440b3232152e0977d7b79","sha512":"f2a7e6c17c19cbc719adb727cf8a85082ce7af90377e95c7eebac4a7b06931b9781d093e262dd87505dccfbf3aea36054450a894d9f834e7b2e69be9226d89b2","ssdeep":"3:N/BKL1XgqxPn:eL1wqln","tlshash":"255504c0544030704c54dc05d1541455f015040014750401747d47d4177110011305c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.302685Z","last_seen":"2026-04-29T15:24:31.302685Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f47389d2f1abd47dbebeef3e2d3ae8a7","sha1":"dde5aa75f9a647e73d3e2d3fdda68898f850f72d","sha256":"30893b81b3c71cdbd5cf34b54fb52f8eef50b27d8a3f2498a28d2b89bd987fda","sha512":"3524a8ed2b83fe9d62a0708424707959d6cc8e89a918407da7c46540b5982fea9230792acffc47517cf5d009231375b00d5ec2ff5689bfb74ea6a3c926653318","ssdeep":"","tlshash":"56b0028869e5a404e21975a5495fd144f12cc802148a0515658885515f114294167868","size":94,"data":"","first_seen":"2024-12-12T23:50:40.522517Z","last_seen":"2026-04-30T02:32:49.308991Z","times_seen":259936,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"5e9485280d5e6b19e210150d9c1e4f8d","sha1":"78da0853153fa342f43a451518fa7608ab71928e","sha256":"6328ccf80772176a7d00365453b282be471c6fb288e93e0edd0e3d484fef64d2","sha512":"9101a9fbdf14d748168a17585397784f2dabfff2d023034d4fc70afafd07d9c9e300ee87b32a16c4e3095d7e7565f1d31b9e92934569f0ac7aa23c21684db712","ssdeep":"3:N/BKL1Xgqq:eL1wqq","tlshash":"6e5504c0544030704c50d405d15414d57015050015750401747d04d4177110010105d7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.304203Z","last_seen":"2026-04-29T15:24:31.304203Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"0d44c9d52be98b859cee7daf87464f3e","sha1":"0aa7ae35c19f8d01a363414a69641a7eaec451ea","sha256":"7bc09650a239974316394f7d6e11925d17d4afcda15c8f8d9beb8dd328cd69a0","sha512":"e98434e2f5eb0bae7bc3262bd373688f2a069a7e4aec0f97e93988c1b19f034b930d99f3ef3949ec6f5bdc5c6ddc96c60ea4f25aa3019bd40c0f57ccb2fce247","ssdeep":"3:N/BKL1Xgq0c:eL1wq0c","tlshash":"2c5504c0d44030704c50dc0dd15414557155140414750c01745d04d4177110000105d3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.305255Z","last_seen":"2026-04-29T15:24:31.305255Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7b219f74fd39b895b218d282d8ee3fd2","sha1":"78c2da9ff8ff2b7a2f62fb4874f044c5823c0e96","sha256":"f306eaf81db5d1528ebf3b338a23f6d30fc9814bd46080d3ffdff70047a4424f","sha512":"238b60be7cba6331677d55a9e39094ced98bfa2529cc7cdbe8baf8adaa877ac945fcf8f1db84ec2d481fdf9024795923e9fa517af69a025dbb6819e3bb386dfc","ssdeep":"3:N/BKL1Xgq8TR:eL1wq8d","tlshash":"ed5504c0544070f0cc50dc45d1d41455f415040034750c01745dc5d4177110000505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.30653Z","last_seen":"2026-04-29T15:24:31.30653Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"093ead96a46c8a7874277ef314d2b4b6","sha1":"f4e93393010649fa45b5eb70fd85d3311fc278ed","sha256":"46959cc95356a54bfde7b5d198770644ed48d9b2989e0022e3537b146d69cc05","sha512":"d9956a821a09913962c6524120fdde3a5980af8d5464080f415bae085d9064f3c852740e6cf4980ed70bb0c2c742c044d10f9022cd2a546141f43aae818e4cf3","ssdeep":"3:N/BKL1XgqKQ:eL1wqKQ","tlshash":"9f5504c0544030704c50dd05d15414557055040114751403745d05d5177130000307c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.307934Z","last_seen":"2026-04-29T15:24:31.307934Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"131fe103ddbb3124201d912a209d26fd","sha1":"ff1c112f677a3e23591d6810d396f4c44f76d936","sha256":"36421150b05092c783f1fb642c521db116e15b68027845901e762dfae02bac4c","sha512":"ebd3c53c4b81989a848c20c828d5a43069459e2a85eba42877ddb76cd568f822fcbde6dd84c55b36d37b604abc765ef758f6f3842ea03e9cd8758ce28a738815","ssdeep":"3072:YJhZJ+r2cjm/woClmrXi0n1baFDsclBE/+vJ8enGESbxFkpBbytIQyfVFBBysHZS:0vJ6njmo9k1nIFbgMLnfSP24INVVK","tlshash":"a024e8893bdbb565436670f5107b34efbbba2c9430880548d651dce0bca93289fa7d6c","size":220110,"data":"","first_seen":"2026-04-29T15:24:31.309118Z","last_seen":"2026-04-29T15:24:31.309118Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3b875ee1344f3609cfc5db3934462ee0","sha1":"d5907aa5a8a2da4c70129dd1f4783e235d18b2b0","sha256":"d2c7c0468eb8a0ea51784a26304980d0409031b3bc6e8f30e371d5b08fef639a","sha512":"0947edff561ba64ef6cc20d12e79737799eecd1593a1831d763aed8d71974ad6f38532aa9a4340921f9623e57de9b52d71c5c2b276e9de43b5d08be5f83bc0dc","ssdeep":"3:N/BKL1XgqzS:eL1wqzS","tlshash":"565504d0d4c030704c54d440f15414555037040014770401745f04d417711014010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.31023Z","last_seen":"2026-04-29T15:24:31.31023Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d716e2f84a6a3fd27c7c3f3626e2e61c","sha1":"9907b204bfa1045a70be41850c830feebd4fffb7","sha256":"fbf882a34776196fe2ab639a374d7d0e639b76b07be11e6daa271e8d66d57383","sha512":"11b7abaa41779c340383ccc9aee65adf245c11c1bfc3c04c8a5892350d571578fd0166aea106eaaf4bcdc4c8d7f32dc7185c3209d9c76c4510bb127010dd83b7","ssdeep":"3:N/BKL1Xgqf:eL1wqf","tlshash":"7f5504c0d4c030704c5cd440d15414757035040115770401747d05d417701005010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.311296Z","last_seen":"2026-04-29T15:24:31.311296Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ff03fc8f0c3179fb4dcf4389f88a1c16","sha1":"05ff911d7ddf2d7c14b4316a87fd08f42c618f9f","sha256":"025229ec6bb50e915572750c5045d22c5fe16851fd077f1411f41b19aa1dfece","sha512":"4acb3551ec49556a2a64f4a47e480df29f611f67d0ef4b2474e90f7b86caed3dedb0b56eba12e577f1401d4d701c9a4f0898a06eee8f6d7dbe3b4b5283a854e8","ssdeep":"","tlshash":"4f60000000c000000000030cc00300003cc0003300fc0300c30c003000cf3cc0000000","size":14,"data":"","first_seen":"2024-12-12T23:50:40.182598Z","last_seen":"2026-04-30T02:32:49.417949Z","times_seen":261612,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"68f754abfa816d5bf0019a3464f50135","sha1":"c9ceb9429d14048b87bda892aa16cd034d9e46bf","sha256":"a39af777fdc64200261e6e3cfa28d4f97ccc92525b3cfb51112cd334a20ace99","sha512":"d5377768beb1bcd07d62da0e42e63fffec0f13bc79a39fd691a71a53b410ace3f27626effec8e38a2763131d22dbcb387e72a05192e575b22822762e88bfc140","ssdeep":"3:N/BKL1Xgqt:eL1wqt","tlshash":"b75504c154c030754c51d400d35414d55017040015755441745d05d43f7010011115c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.313109Z","last_seen":"2026-04-29T15:24:31.313109Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"cb8ef2f335a2547d40bc8133970117d4","sha1":"0207e6fad08a99d08bc53f2d1ee32b5442530bd3","sha256":"ebb54ece13f956b754992fc9dd323d45174b1dd8dc5167bc0118910cb2eaef41","sha512":"cda76860737a99e6b01ad87ac8f1e6929cc145d8c6204f4a730bb724c5607fdae0b6b709b3015cc0c4bc9a2109e8e78b32461a4ca10ae8b54d397fb8f39a8b36","ssdeep":"3:N/BKL1XgqkG:eL1wqkG","tlshash":"4c5504c154c070f05c74d405d15414557015040014750501745d04d417f110010145c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.314282Z","last_seen":"2026-04-29T15:24:31.314282Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fbce33659c0badac8546d7b8075dc411","sha1":"115b8948591f72766534ae5a1b6727b519039954","sha256":"954d5559957229b0de10ec20bf19b3a951c857cf72e6070536b1e5c01e5eaad6","sha512":"5eae9fe9869d130f92680df866402332d0d4e11868d2e061d4ee7496277ab5030cd33d041270a101250fb587017b41974f73c3fc0ea8796ccefd2ae55f2dd9c2","ssdeep":"3:N/BKL1Xgqyn:eL1wqy","tlshash":"7b5504c0544430744c50d400d3545c555017040014f71441745d04d41f7110100505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.315432Z","last_seen":"2026-04-29T15:24:31.315432Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7078fa730015493ca516c38661051a27","sha1":"48685e75abeb48f22dc992afe8f3f34356727aa4","sha256":"7e9f6ce6389e50c904f4e8ffb1238e5a66111e6d51cd07ca73f41877ae19b302","sha512":"9580a6ed8b2954bdad25941c1e38a6c57a9991ee6908a38606acdd66c03433a8caea6bbe5b58e2945cd337c4a29cb85caf3bd5a92d26f739601bbc2e5e579a17","ssdeep":"3:N/BKL1XgqMW:eL1wqMW","tlshash":"a15504c1544030754c50d440d354145550150400147d1441745d05dc1f7010005105c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.316527Z","last_seen":"2026-04-29T15:24:31.316527Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1a37c2bbb53914079e15f61fddc54173","sha1":"d2f31402e7e78d367d9de4fcb34a14839ce6b462","sha256":"5d75edd10aef9cfbc34581af06062874d522694b57fd1113da212c719be25647","sha512":"552e9634ceb67752bd4fca6d82b77a33b38f3d29bc3447a1f1e548de26d35a4186311722febc8ff0926aa752b21c8675fc3bdd02b60d9184d60e5dce54b4ed70","ssdeep":"3:N/BKL1Xgqwn:eL1wqw","tlshash":"565504c0744030704c50d405d15414557015050114750401747d04d4177110010105d3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.317629Z","last_seen":"2026-04-29T15:24:31.317629Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"36a41b612435c401b78d596e44bbfeba","sha1":"1928b1f96eb747c801624fb1383258e6d0bf5d5d","sha256":"84be782508edbcaf944eac534ed395b5fab5321214d6ff5cc984e11e89654d6e","sha512":"11aca36d586bb33054a04b427ca1703324f5609cdd7b25cefc1c79c725af131faea7eb7959dd21c4fe4b19c0d02f1866f438b2ac18cb69bbda092b2ebcb42e3a","ssdeep":"3:N/BKL1Xgq8TW:eL1wq8a","tlshash":"995504c0544070704c50dc05d1541455f415044034750c01745d45f4177110000505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.318917Z","last_seen":"2026-04-29T15:24:31.318917Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f9e78f2a3f8490286144fce54139cc84","sha1":"9082490fbcaf10f79db7cca90551ad2e25785e9f","sha256":"d0ee6681740cf90226be82ea737605ff94290a57662a3986ae00de46834e41eb","sha512":"7de7f9afc31ed822e3645cdffe243a19822769ffb207a2b01c0c99ca33af9d852ff0babdc09741ca5ac4f459b5de276c0cbd824765678daf7a9422647f9112f4","ssdeep":"3:N/BKL1XgqPQ:eL1wqo","tlshash":"265504c054c070704cd4d440d1d41c555035040014754401755d14d457741401030dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.319891Z","last_seen":"2026-04-29T15:24:31.319891Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7d951ec3c350e61c0bff5d18d0708b99","sha1":"98d802c0fae15c8b15779fa431d46aa4d8b54284","sha256":"72586766ad7a03cf2e613d6caf60078d417d7128b747bb3705d4164718784edf","sha512":"907a2241b65ee4a3c8b34fcad995175ad4b086a83e9769969a207b8c64740d441f5f472f387505acec7e024c098960fddb21c938ece4be64cf8eaadb5d1b7217","ssdeep":"3:N/BKL1Xgqcc:eL1wqcc","tlshash":"7d5504c0544070744c50d400d3741455501504301575145174dd0ddc1f7414400505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.321014Z","last_seen":"2026-04-29T15:24:31.321014Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"33ff6022e88df59f8dfc9eb546435e9c","sha1":"7f2ad96c0a1276fbc858c652a6e2d0b3c9d4d3e4","sha256":"a1c845cab782ea7dec04543ec72e0b354cb8e9aae23acc02ee02b1832e3acd9a","sha512":"99820974c649620d8dfd487054edee4863ca41025de5a87fcd6fddfafbecb53668799fdde6f7b809112fec178b18f28a9ff8e190d298aff5a29c6795ad639c25","ssdeep":"","tlshash":"0c600000c0303003000f3000f00000033cc000f0cccc3003030c00f000c000c0cc000c","size":14,"data":"","first_seen":"2024-12-12T23:50:40.556614Z","last_seen":"2026-04-30T02:32:49.325757Z","times_seen":262879,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"62700d19faee5f45b97b788b4c7c88c6","sha1":"b2d94c248e0111913a27a60275ea4b4de16a4478","sha256":"b1795133ee457962356d4054e0b6174373b47716680a03cc3465c2c14cb63f25","sha512":"63258c57b788bdfbcc81294cc7213379d10ecca5f684aafd3159b07af078da5898a1203e6b9e3cdcb95f6872bfd19c108d1bc80a97c03123ea9c655a143c11f6","ssdeep":"3:N/BKL1XgqMd:eL1wqMd","tlshash":"b75504c1544030754c50d400d3541455501d0400147d1441745d05dc1f7014005105c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.322729Z","last_seen":"2026-04-29T15:24:31.322729Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1058fb2457e59b8dc8b236b0fff0a5c3","sha1":"b782a0cf6a6fe69b17bb37fd24b2a539412ffa30","sha256":"6618a077136ade594a0954c2be1576f7c033b002fc91422ddf613c0ef9f08ff3","sha512":"9a20e09778bcf34d3ecce00414e44b7b880a98a0ffa06aa97a14645e50227844708dd3c22d0ee4067fb1a300ce031f6925513f36b45fcc49f7a7e2796c6e880a","ssdeep":"3:N/BKL1XgqT:eL1wqT","tlshash":"825504c054c030744c50f401d37434555015440014751447745d04d41f7010004105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.323926Z","last_seen":"2026-04-29T15:24:31.323926Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"5a0ac7fc24358245a08427b2b0ba4d46","sha1":"027ea86002cbad91bfc426c5b4dacab59316738e","sha256":"83e5de80c001754aff42d77790a912ed4dd55be35ff55af021ac4615736d4297","sha512":"9fa579a633a6824104fbcc2b6b6ca7592cc4d0eec9d2f05067fa7b27d45f014f1900689896cc96ddc44b966a7fe3c033f47c7b6a9ff4c65825d52f8551ddd9d4","ssdeep":"3:N/BKL1Xgqb:eL1wqb","tlshash":"ed5504c0d44070744c50d401d3541c555017041014773541745d44d41f7010040105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.325025Z","last_seen":"2026-04-29T15:24:31.325025Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"cbe7954222aafa04fd25c9391f0f0812","sha1":"5fcb74e910a261e55251f3f426c76c68b88715f3","sha256":"e239dffd6d4b1050ee3e8c5ebc11565a61c12cc1b7a31e46862b37bf27565131","sha512":"3385d326467cca5f9e80db95e43fcaeeaf52461c36afc8b98472a35d497c5d09d43bce33a1b8001ae2b0e4b71d104d35d38de9ef3826259e6fc766eaf484d7c3","ssdeep":"3:N/BKL1XgqMG:eL1wqMG","tlshash":"e35504c074507070cc51d505d15c14577015040014750401745d14d417f110000107c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.326154Z","last_seen":"2026-04-29T15:24:31.326154Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"caa2440a8dc2a11c8342d4fdf3a25967","sha1":"e7cea5bc1dd5a22c78c79623c901899e9a7306dc","sha256":"71b7cd9265d5b9c532ee208394c45e1d5094dd4310f8adf2412cba6406ebe345","sha512":"3522638e5b6a86df357572905fc8808e006c71f4e5013df1e234b816df7767f265b0db4dcff520f0fd64a55ee2edf6dd8ffa4b3860665c757a938a608fb34b5c","ssdeep":"3:N/BKL1Xgqu:eL1wqu","tlshash":"705504c0d44030704c50d405d5541c577015040014f70415745d14f4177310100505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.327263Z","last_seen":"2026-04-29T15:24:31.327263Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"25763c7d8ee511702c09988c3588296f","sha1":"07693e54660e7c50735adab6f379e0f48b610702","sha256":"1d7d764858cd79c2b9efb042bafddff9e644594b8f2fb8f591273f3734cdf2b0","sha512":"a702442edf5c70993829aa7bd70894948c2b78011fc42aa3a063c643469a10093400f09490c1ab7652fcc0855da57ef34835aa4fdc55a88b6e3257c548d9de9d","ssdeep":"","tlshash":"85b012912aa22000d3139034484fc814f048034220d90c05a45da3348f4009a45b95ac","size":87,"data":"","first_seen":"2025-06-08T01:33:45.15781Z","last_seen":"2026-04-29T15:35:39.528101Z","times_seen":4356,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"4352fb3d19eae3342dbf29864431e701","sha1":"60921df54a8373e4e806caa11b87a54de5feb748","sha256":"1cd8e8d7c1432426fa771d03f5dad8f19fadd02dadd8a4321122f81952233ba6","sha512":"d7a8530f2036ff0f24873f2ff0a689a3c8624664697f7b121bc1f46624d89df950cc20c8d0cb7a8caec19078210a6c5934dbf113c74affc3ea0f1b19edfbc8be","ssdeep":"3:N/BKL1XgqUn:eL1wqU","tlshash":"3c5504c05c4030744c70d400d3541455d0150c101c751c41745d04f41f7050001505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.329057Z","last_seen":"2026-04-29T15:24:31.329057Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9668f0248a6238ba10154888f75e12a1","sha1":"1a47515cc330c11ffd35088a9d2f590e2385a0b8","sha256":"1062b2f1e86acde0a176747449f2bcd299c196653a222f0e0c401eb1a5fa7e11","sha512":"0481ae7baee18b6cd66cc900abd3a05deabcbe0a0663e71158ef33e6e315c88abed3ca02847b6ed3027bfa1e1cf21de6da6c34175ae8767eb949bbe4d452a2f1","ssdeep":"3:N/BKL1Xgq4d:eL1wqQ","tlshash":"e85504c055c033744c50f400d3d5155550150400147d1441745d04d41f701000050dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.33017Z","last_seen":"2026-04-29T15:24:31.33017Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"996737a2981cfbf1890320ff93a8f7e3","sha1":"2418cc9da22c4b654a0c07eda14885ccdb46993f","sha256":"916931dc641c42f7631387c15b81f277c4aaf0a73602aeeb731e0719aca95301","sha512":"8fc4cb982ef6ec21ca0a4d675e7963501f71b85fbe4d438afd193a78f95f27710ace6089e0cfacab7e6ab1fa2792eac6ebf3702cde5b05d47de82b7c7a4533a4","ssdeep":"3:N/BKL1Xgq0:eL1wq0","tlshash":"375504c0d440307c4c70d401d35434555015040034771c41745f04d41f701004110dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.331224Z","last_seen":"2026-04-29T15:24:31.331224Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e26298d44061bff826199d746c48f047","sha1":"7d61c701eab75f8d53df40518c38181624b2f80d","sha256":"28ca8d57568a8c0f4fd732ee10796ebc157cff2a0cb384ad02ca5b4d26250819","sha512":"0221dbb18924e3eb75405c0f18d25e7599cebf1237f23ad2b29cd689b84bfbf9dc1c6b87123c4b33934bc79cd8507a02be499d5529dbcd5f9ccde83caba61208","ssdeep":"3:N/BKL1Xgqo:eL1wqo","tlshash":"3d5504c0544030704c50d405dd541455703504005475040d745d04d417711000070dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.332426Z","last_seen":"2026-04-29T15:24:31.332426Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"84c1f772afd507546c0e5a54b782306c","sha1":"fb3c30a58829990f352387219b838f01c794f82c","sha256":"b02bf0e20225e9216c515f8d18eb809390209cecd84aec7f71b1261e52722a33","sha512":"63d80ec336950573a47146e81a1bb1b4c446acc0b4a474e612ea99da85bbaa08a5279b5dec4fefb66c709ef2526253752cb4967b9fecbf5fc4e09026f370007c","ssdeep":"3072:Mnv/COeRgSfb9wEEVP/OsOhfhRdylWvEZHwrh9rEVKQiUs7BL6:4v/COeRgSRwEs/OsO1hRkQv+QrfEcr/Q","tlshash":"a514f98d36d9b1550373b0b8512b31ebb7fb2d44340c2999d62689e0fca935c6bb3d68","size":195750,"data":"","first_seen":"2026-04-29T15:24:31.293274Z","last_seen":"2026-04-29T15:24:31.293274Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.217431+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1087},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":777,\"bytes_toclient\":4682,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"235d4081aaa6b7decf737f690df8395f","sha1":"0fa607cac7a31019c43d75bb0af2a5bc4c288dca","sha256":"0b2e1badb619d1771fc5c6957f1148f2aaae72b184c49f9301e913f2d3551805","sha512":"85847a65a537acc442d3c152c5b2ce585742fc1aa2eca52c0095f840c2cdd0409f2054ede00efc9a826bcb5663a13e1926cb2437bc119afbc536f815f974c604","ssdeep":"3:N/BKL1XgqI:eL1wqI","tlshash":"7b5504c054c034714c54d440d1d4145d7035040054751401745d04d417751404014dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.333412Z","last_seen":"2026-04-29T15:24:31.333412Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"bc005df1e117af84ff581ad2541ba3d2","sha1":"46d59e59c96947e802dc81b96ac21747224de531","sha256":"1f88d9d4532f06487b3ccfa2e5bc698b7a044d128b6141653fbc9f73a268d5ea","sha512":"459b41c48351b58f2698edf8bc53398d7734c29a18b9d6f6eb90dfa1082e4143acd5c091d9166a55dd4142a15f46b36d174e2e66d89e831e5cfd3b2d799285b4","ssdeep":"3:N/BKL1Xgq3n:eL1wq3","tlshash":"d15504c0d4c030744c5cd441d1f414555035040014770c41745d04d417741104010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.334798Z","last_seen":"2026-04-29T15:24:31.334798Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f59a9c52fd4afb4ca716e324dca677d1","sha1":"112738142483dcfb3efde496beb5d418b3cffd23","sha256":"9a3555cff9927049f7ebed918e47e87a02e75df8776ad6a4ccaab29df9c19fc6","sha512":"dd34db866da4b57ecb490082febaf5f8dd557d5e7ce25bc195a1b4042d85c517b5cde66c55b4fc22639fcbc54c706e9761b589f63534bbbcbf923cf115851bc4","ssdeep":"3:N/BKL1Xgq1:eL1wq1","tlshash":"755504c055c07074cc50d400d35414557015040054751441745d0cd51f7010000105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.336119Z","last_seen":"2026-04-29T15:24:31.336119Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e34051bfb58795098348aa464f2f3b6f","sha1":"19fc535004e6864087fa63fd60c0d381351ade28","sha256":"0c2f8296b3375ef03c7f68554e0aa923b1a9888980f9b2eb7efc337db68e0350","sha512":"c480eb31f5576b9baf99a2a706a344d1c463de55f902932ad42897298da8c9f2c7666eed7f02242d0bc948bd55f476a63daaa566e5d2b208f230ab5af8209f52","ssdeep":"3:N/BKL1Xgq8:eL1wq8","tlshash":"7a5504c4744030744c70dc00d354145550150440547514c1745d0cd41f7434400505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.337536Z","last_seen":"2026-04-29T15:24:31.337536Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d258d87784a8c37b920eff0ff168dbcd","sha1":"622257a372c04f569aad92247b38c864bf156b21","sha256":"6591d1275e1695f10074ce2cd080bf48262844c7ee844e694898e1b27e30703d","sha512":"0b93f48404c87480d52714cff785743c19eaef6749b76d8c54004935066f9ef14b504f71794c79d755e2e4ae7f460442d0e97fbecec9045a9f0d1c8b57832d4a","ssdeep":"","tlshash":"03c09b887fc5e019c64526355c6f5287f639efa04c581053e052524ab6b0b55439ff5f","size":136,"data":"","first_seen":"2026-04-20T10:29:43.225234Z","last_seen":"2026-04-30T02:44:02.285796Z","times_seen":4274,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3dab9ac0735bc50f6610bbfe77d0092e","sha1":"b28ef5bb80a80b5b7280d3995ff35928d6c646a9","sha256":"3175ec6efe397eb054731623fc8c1dfb3bbad4d6f3bf7c0d3741d1ea54c850e2","sha512":"2daa8d6f007d5bcca80c7f676c1f59c35d94c1a1799e4906ca46619186a05eb06073b282a99d766348f49208b7080f523cb3a60f7a8fad378a466ee0dbebe9be","ssdeep":"3:N/BKL1Xgqcc:eL1wqcc","tlshash":"0a5504c05440307c4c50d400d35414555017444014751441745d04d51f7050001105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.339288Z","last_seen":"2026-04-29T15:24:31.339288Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"226c7b3444b140e642c15a26938ac69f","sha1":"09c97cab3abb6f4579fffa0c7966f5a49c4676fb","sha256":"eabaf0c6a143dc5c7a4b3e37f47903d51109630284a12224d5d3ad974c69b90f","sha512":"abaf7ed566db7c1d339436a9e627f9befb1afc42adeeaf2d2a1eb9ce5a33d5c7e415ae2868daebba04a43e76a6587d6cb10346ffc791589971e70d20caee4562","ssdeep":"3:N/BKL1XgqtV:eL1wqtV","tlshash":"c25504d0f44031744c51d400d7dc55d75015040414751441747f04d41f7010000505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.340396Z","last_seen":"2026-04-29T15:24:31.340396Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e7d8d63283e18f915c6feb163934785c","sha1":"f3178366fe58403f607250f843c9aed99d3acf9d","sha256":"4d55ed7f7da830e4290ec81df79e3e56c2fb124b7335d05a71cbea0fb225db5a","sha512":"3a84d7df4bcf36a59662ec6a4103824cbb265beda9b40630c395def56baae09bb11636853d44933387dfc07ce065b1128354fd09b3220cb0ff5f0c42858a605e","ssdeep":"3:N/BKL1Xgq7:eL1wq7","tlshash":"d25504c4754030744c70d400d35414555015044014751441745d0cd41ff414400505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.341412Z","last_seen":"2026-04-29T15:24:31.341412Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d2df5292f64772b2747e5a7f0b8b4b4a","sha1":"9c7907e4ef82d0dd48402048bcc888c906a124cf","sha256":"2ec1645c3358bed1ff651885e42ea7a933de67c8a37b1c1bf47e907593ec8e57","sha512":"0fdf667db0ba09da2dd66270e3cb72721bc10b2ac4a4ac79cf17ffce0132d510d3e02b49542a443cdbc072145b767626edeef2cd4d6da43854e673dc72ff2454","ssdeep":"3:N/BKL1XgqS:eL1wqS","tlshash":"585504c0d44430744c50d441d3541c555017051014773541745d45d41f7010040105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.342425Z","last_seen":"2026-04-29T15:24:31.342425Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"bbe0c1f28eab9194090ae63af24e7b25","sha1":"7cf7654d2341029238a19acc2337077d11e65b01","sha256":"b0949a57c61f1ca1632f7fba971f670194c7cb816e88ffb8b193c7ee480c14e8","sha512":"41e1d30b5aebcf58f0b92e225880eb37dc26e24da862f8cad4883f9307942ce5353cc7209081c8e5d032becadd4823be5410b2660cac8d64b88b39ec52860892","ssdeep":"3:N/BKL1XgqWn:eL1wqW","tlshash":"f45504c0544030744c51d400d3551455d01504101c751c41745d04f43f701000150dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.343475Z","last_seen":"2026-04-29T15:24:31.343475Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"aea11891694a40d41d4e121e04dd3032","sha1":"990474c9b941f35b68fb60d0b4a0605733aa006f","sha256":"2786f4da6d18e56725d32cb395c91b15d07fd71dbfb6d5b317dc29746b7de55e","sha512":"a41c5d3cb113fc6e78c63c3785a48c2aa4a985d49692b9f574c4c91d3c508b42c96c176ef29642e19d28c5b28be0703a8ea1a1855d8105cce179b396b5747777","ssdeep":"3:N/BKL1XgqJVR:eL1wqbR","tlshash":"da5504c0744030704c51d405d15c1457701504011475040174dd0cd4177110001105c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.344546Z","last_seen":"2026-04-29T15:24:31.344546Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"0fecaacfc101057069dbede96ffdb71c","sha1":"d37dfc625af5cbbc6452d09ee6aa9f46786e0ade","sha256":"226ed9c6ce56a4c407afaa9cca93e327e4ab1e221d7e2e26464459d302415c55","sha512":"9722ff52fe40b62b44e5ab1fda2b1ce6f08fe765c34ec7a0f96bf53323daed429fd21982fee37fc9f2ebf7697cbf59dced1d93a497c68f1b3bb6df41933c8ff0","ssdeep":"3:N/BKL1XgqMB:eL1wqMB","tlshash":"915504c074403070cc51d505d1dc1457f015040014750401745d14d4177110000107c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.345769Z","last_seen":"2026-04-29T15:24:31.345769Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"241c48a3aeae3faeb79ea857e2c6df37","sha1":"e764dc5dd24646f885ea424550cf380a2a1a70ec","sha256":"045cade3e4adb475863c27919566ac89fd06d1ac5f402f8b812ce4b774a7efce","sha512":"e73c1cb495d23a6f8e5f1c82214b84c5f9ac5160c0788f13a2b84ec68c303ea5f280c09ba2e35d9debb856b2a3c6c07b047636dc631d4dd0d6403c4c4441a7a9","ssdeep":"3:N/BKL1Xgq3Rn:eL1wqhn","tlshash":"e65504c0545031714c50dc07d15414557055440014770405747d04d417711000010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.347001Z","last_seen":"2026-04-29T15:24:31.347001Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1fc657b6a5250661212de14435a46c4c","sha1":"5c8041f6224c5fd26d18a5204bc516ffe9c74bb9","sha256":"3c52248c3a381b5e1816705f560702f5cb6efbd0a7cbe50e50deb675a4978f44","sha512":"238568e6b2678c300cd1b948bd4761b23aa8dd795e4be34989f90b767d53e2a6dfc4bc1f45f3b6f3371b7f9899a46fbab18cbd8824ebcba3925eee8072dbdc41","ssdeep":"3:N/BKL1XgqkJ:eL1wqkJ","tlshash":"c65504c154c070f05c54d405d15414557015041014750401745d04d4177110010145c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.34822Z","last_seen":"2026-04-29T15:24:31.34822Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"1ce0c12cc538b425a4a62c5b751b72c4","sha1":"c72442592d1fe2ae63aed0b686073c48635fbec1","sha256":"b06aac0eec7d305c831e3f6442a61cb701ebf111bf908203f76dc676e5889e30","sha512":"c5583f61a8aa6d69dea5b74dee273f5fa2febc9dc989daf735ccd7b3a6077a939db648e1f77ca7d24510ecfaa12fc6a5b34ef52164678c969bc5b3d98ac33cb0","ssdeep":"3:N/BKL1XgqKW:eL1wqKW","tlshash":"335504c0544030704c50d505d17414557055150114751403745d05d4177110000307c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.349416Z","last_seen":"2026-04-29T15:24:31.349416Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"432b36020bc69dffff6de958f6908d05","sha1":"a75f34ac784a70bea2e91da9b0b8a39eb86e8aac","sha256":"713aac609f23cf7a7bf41bd417c17ec4533f3f869b5a34e956959f1a0c261acf","sha512":"91279c0fa3c48d2af4b1e7afafb700167c1690b489ed5047b485764d9434c9403dc6ca4070acd5d6d8a82310747fcff665f55b60bf799302c6e4625e863dec95","ssdeep":"3:N/BKL1Xgq3:eL1wq3","tlshash":"6f5504c054c034714c54d440d1d41457511504005c751401745d04d417741400010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.350407Z","last_seen":"2026-04-29T15:24:31.350407Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ca897fb253cc8807c5aafc947eb02fb6","sha1":"25137d68712ada7d3ad424c80bc0d688a696f7bb","sha256":"57f9c536daa79c4d770534dbafbe2e7b2b2aa48b9eb2617b4e670b8a78a4a4ce","sha512":"187200763128b83b777932b28834f8a21adf5824c5b9f8635249168aaefcc2451885b26da07411ccd56a52146f9b8cc2524647ebf2df4c1474f80d219d893f64","ssdeep":"","tlshash":"d96000030c00cc300033000c0003003f30f00c3003cc300c033003f003c030c0000030","size":16,"data":"","first_seen":"2024-12-12T23:50:40.144885Z","last_seen":"2026-04-30T02:32:49.421419Z","times_seen":260422,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ef17f3ff3d5a9a1df58d4e30a0fd4d35","sha1":"14701e609df7ec6dc8dd39e3754bfb4c10df8583","sha256":"2f16e055e999da6b365231331a3d45676c14a0f45a115955afa49d9097de9e8a","sha512":"21ec45aa02ce54f31e60192a58aab8b4427024748e3ffaa57d4bd067c83b0537eefc044af6b81c016984a6d376f12527f71f39a563b629abafa48bc721333add","ssdeep":"3:N/BKL1Xgqon:eL1wqo","tlshash":"de5504c054d030744c50d400d374145550150400147514537c5d04d41f7051000105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.352227Z","last_seen":"2026-04-29T15:24:31.352227Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6c318f26d461804c8bda330fd4923170","sha1":"47555f280de8cced58f1773f031da1feeca7aac5","sha256":"e0e9f17c2d927aadc80eb8af7e9f4dab101934d51637f0945bc930cf8ed8b8da","sha512":"e0483ab9765a4c1814f8d24cb9eca6085e2bb31f0fdc3c2e4ab4913b5a51402f8a5b5bbde4e87c9e4cffcaf28638b87dfeb9aa411a10382fab0fe17d7023dc8c","ssdeep":"3:N/BKL1XgqP:eL1wqP","tlshash":"fc5504c055407074cc50dd00df5c145d501504001c7d1c41745d05d41f7014001145c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.353463Z","last_seen":"2026-04-29T15:24:31.353463Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"a42a7b92635ec36fab5da4741e82d06b","sha1":"560bad39bb570666a9c4da9e122901cec5b3869e","sha256":"6b00817638fcba6062bcec0ca83961a5346f93be345c46c686ef0f24edc5129b","sha512":"2ae146ee4671d1916d9b5bf158660c23a0ced7a7c78899f10a009e7b1ee4c57b8091ebf17cdb38388c41ba0213626c2579be781fa6c7271261512deac6109e4a","ssdeep":"3:N/BKL1Xgqp:eL1wqp","tlshash":"025504c154c030754c50d400d35414575017044015755445745d05d41f7010051115c7","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.35447Z","last_seen":"2026-04-29T15:24:31.35447Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"68a21ab2aea0dec60ad64b05ab18ac0f","sha1":"05ff1c844f7c579f54c41bd9c2197bc6e8d305d6","sha256":"961730fcc9d2158f165f7a5c3aadd6cf54ccd2acbe4e1a0c23a9ea593d598652","sha512":"5e24f08ec02f3bbe2eee5e359282098ff6ae27f173c2ebb7d0273112db01a048176121d4a651921b81173b020fc9cbab271c7b4d3a64e7b8d63318b885a932a9","ssdeep":"3:N/BKL1Xgq1:eL1wq1","tlshash":"0c5504c0d45030744c50d400d3555c5751150c0014751441745d04d41f7113004105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.355418Z","last_seen":"2026-04-29T15:24:31.355418Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"81c32f058f9b2a45d97990a7f1cfd450","sha1":"bb5a2a6941cf7c6dc970340a5089629a3b720cc4","sha256":"1f42b0a6bfc99a6836eef1175d95a9091bc459e301aa00d33a6803591d2e4b4c","sha512":"e42cc6f71c28a9443458d51eaf2cb6a3ff1f6492203e75a2f0afdc9ed07ab92362590ee66d6c14c43a7bf4e6d361452b45c7c11c1b155e3ddad016342dd5b56e","ssdeep":"3:N/BKL1Xgqd:eL1wqd","tlshash":"595504c05cd070744c50d400d35414555015150014751441745d04d41f7051040105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.356521Z","last_seen":"2026-04-29T15:24:31.356521Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"a945aaeca384ac188f520951da9f95f6","sha1":"329433514122d2a85ceff942ca893e216b12fbed","sha256":"544d770ce7db9b8e1e6a9728a1cc36b9a192608030e119dd8ff255886a3d4090","sha512":"7c9be78cef38f9f876029867f5b23874406d71d876fcf5dfeff612cf186ac42d472d3a48e2710864a3a25a5aa43c818eee41c8dfbf9fbe382df1f4b74d1f3ec5","ssdeep":"3:N/BKL1XgqbQn:eL1wq0n","tlshash":"d75504c0544070744c50d400d35414555055040014751451745d0cdc1f7414400505d3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.357482Z","last_seen":"2026-04-29T15:24:31.357482Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9c3a44e9acb21db504e171acc79d3fb7","sha1":"baf6d976d0210f7f710ee2c151eb4c0bd2e59e00","sha256":"3152f9abbb5b74e81a855b4b5971b07f02ac25de96f0341f1b7ca05f9aae0018","sha512":"127a3acb32e641b1bf1f222f54fcc38effbe62372b38a1b6576d95730a93981f21b1a350c2d7585035fd7706162494db8784e6cae691d0ea768fc91bdbb98fea","ssdeep":"3:N/BKL1Xgqq:eL1wqq","tlshash":"ee5504c0544030704cd0f405dd541455701504005475040d747d04d417711c000505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.358607Z","last_seen":"2026-04-29T15:24:31.358607Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"2e46777d7599fbf1d394ef2c37c65a9c","sha1":"e41166318dcee7d626b83e3b65f3065df6125891","sha256":"21a8da23b5c059d720d22bcefcba64d0f1eee6bae52b5029438e48715f86dad0","sha512":"f1c4f96ad67a648802e1259ecc7057875e4ac4ee612661e00b61ac128432abd45937749514ab52f68ffa1a56b0d43b8214d96c970254741f180fbeace87bc9b4","ssdeep":"3:N/BKL1XgqxNn:eL1wqnn","tlshash":"7a5504c0544070704c54dd05d1541455f015040014750501747d47d4177110011305c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.359493Z","last_seen":"2026-04-29T15:24:31.359493Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"b5e7da544604357ded76f194c8988874","sha1":"a288ee8cf6a5a5fa3d3090f3c29db2446a8ae402","sha256":"dd9d8733e322c7795b4c0dca582d8cf1aecdae554672809fc5d9c8bd4643f91f","sha512":"f3c1c14499daf9e5182b64f95a683010c54bf3e3e8be744f83f0e37f88d0002733fc53fe51adbd8a3f6da0100ae3c6ddfbac97ad34c00ce4394d0663a49c03aa","ssdeep":"3:N/BKL1XgqNn:eL1wqNn","tlshash":"015504c1545030745d50d400d3d4545550150400147d1441745d04d43f7013004105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.360858Z","last_seen":"2026-04-29T15:24:31.360858Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9ce8d630fa58aa21da5407c9a2238477","sha1":"f64cef9f2447505ef7752421215e89601e729cd8","sha256":"e07a703ed5db827f38ddc5e10d595b7f95239e4cffca5847dd9800c0db584bb4","sha512":"40358aaa8bb49c5bf9d2b0d9540201a17c92c1c44ea4b829768b7f286ac797b2f2ec4b06ea661a4f516e9686193a4f975e513749e83ee475270222ccbcdb5393","ssdeep":"3:N/BKL1XgqKn:eL1wqKn","tlshash":"d05504c055c130744c50d400d354145570150400147d1451745d04dc1f70100c0105d3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.361867Z","last_seen":"2026-04-29T15:24:31.361867Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ff7b8dd6011e536ae0e898df8b73367c","sha1":"85f43bb913c9c526c8c5a0b8683b9688db1e26ef","sha256":"75bc87c9044550d129e16876a27da51a2703c3b665b9c68e0e80ea2b35116dac","sha512":"44abd33a1a7a1e86d128496f131291788eac8271cbb455454e6d275bafb7d84b24eabf5e295ddd740ab14a7c796cf1b01837347c202d2f74e4d28ba40a7348ff","ssdeep":"3:N/BKL1XgqN:eL1wqN","tlshash":"0f5504c054407074cc50dd00d75c145d50150400147d1d41745d05d41f7014001145c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.362855Z","last_seen":"2026-04-29T15:24:31.362855Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"8a94d7bca0a16b120e35db06d931ef05","sha1":"c75db560d36fe070088d970410ec3963f8973d9d","sha256":"14715b42835240b2b81c71facb16a6f461d739a865752ff51093e2e22598ae1b","sha512":"151ca31089c3403371a86366c15d4d0b5e56038843afa27bf05876d437febf9dbe0b82dcd5b75270bc4eddf86c35dc089d78c3f5343aa587897aec2381f13894","ssdeep":"3:N/BKL1Xgq5W:eL1wq5W","tlshash":"415504c054c031f44c74f401d3d415555015040014755441745d04f41f7010000105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.364207Z","last_seen":"2026-04-29T15:24:31.364207Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b7c730af9ef4e84d52f85ffead6bba70","sha1":"0b7a62d2aba34d6b31ccc40bf8de544de49bb151","sha256":"f66dcebdaa5958769ec14304460925387bbae402faf0b2067d21f9433fc62553","sha512":"b34ae6d80a32ebaa3509e1f4e9016e2b821950bc956af7c41e9c23980d485135969ab47bafb5fbf47d0ed70f2826a75d50da6d573fb6263f7d0b391bb52e0615","ssdeep":"","tlshash":"e251e7c6d9da5022cbed23c28e6b770403bc4aa3496210da9150c92cde9ff8b45280e2","size":3098,"data":"","first_seen":"2026-04-29T15:24:31.364959Z","last_seen":"2026-04-29T15:24:31.364959Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-04-30T02:32:49.309955Z","times_seen":689306,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"731614f9c29fff2889341db8d5d673e0","sha1":"0feed88a42e4bccb9938207f9e222757dc11a845","sha256":"9b83d96076e2dccc6fb2749c53110f68a82670e8df3874694ce1a149882802ea","sha512":"813c0162957dc909825e38493c9a0f2b37f392abc0913bbf55c02d13f4da635d21a161612b9a73585da6dd9a8d09b2de678b5c057bdab218d1ca59736f21e91b","ssdeep":"3:N/BKL1XgqQ:eL1wqQ","tlshash":"a95504c054c030744c50d400d3541c5d7057040014771451745d04dc1f7010040145c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.3664Z","last_seen":"2026-04-29T15:24:31.3664Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ba67263302178cdc958fb6d41f5e8068","sha1":"4963aea92de7a6614faa32f1a5e83ba34ca637d0","sha256":"0e180672b99ad047d8185ad44566abfdcda53020f36a347047a53ef729b65891","sha512":"db5ad1f02ef8a6b9cad1c6c3a235cceeb27464f2ebf2567211e0fa3bdd1ce849e612c99e22afc9ba1858d7ea2c7d88837898e1c1b67687a5d5208533c165f35c","ssdeep":"3:N/BKL1XgqCn:eL1wqCn","tlshash":"855504c054c070754c50d400d35414557017040054751441745d0cd41f70d00c0105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.367406Z","last_seen":"2026-04-29T15:24:31.367406Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ddfe507fc7cec806ab453d88d9b282af","sha1":"080b743089e4185c0fe22201eb0afbe07c68fa8f","sha256":"60fcfa5856f0674c9e45d27304e0a73adc93b193700f78dc4817418c08002b5c","sha512":"fb47acaa89064f1d6b9a5cf4a35ef18a0ccdaa592d4f3787fab1086b09626e9b881157e80815c624d1d1313740985723f65976363ab803f53279e21168fa221c","ssdeep":"3:N/BKL1XgqV:eL1wqV","tlshash":"205504c0d440307c5d70d401d35c14555015040054775441745d04d51f7010040105c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.368414Z","last_seen":"2026-04-29T15:24:31.368414Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"920e248bcbf65ace3ddc325d7403a854","sha1":"6a4bd12331d6bbff0465d879214d3928930cbeec","sha256":"1822b0548ce1e65d777aca54306a0c5bbc2aba568070e3b7c0690f803b30ee6e","sha512":"6bacb6b4800be167b6b9311f9de967063e65c8264b6ee3c22ad1c3220b6fe40eae269bc8e3a9f1bf32278423002c1867b38975b25faa3b5176ec7c0b2c8e83ec","ssdeep":"3:N/BKL1Xgqen:eL1wqen","tlshash":"a55504d1545030704c50d405d35414557015040014750c01745d05d4177131000305c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.369364Z","last_seen":"2026-04-29T15:24:31.369364Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"3eb92f0edbf520045ec564c45993868a","sha1":"939a34978c6c544c2fd54c38b903f0943aed669d","sha256":"dfff91a81ce558ce86d1e8721010c8d440fb49b59963a8f19063e3d971eab6d4","sha512":"a652beef391416858e4b05da9ac3ca9679d75c8e7817aedca18186c7ac31437e305f357c94b583df1c2de6298ed70c8dd0f054299cd461d0831380df8ba2bb9e","ssdeep":"3:N/BKL1Xgq3Sn:eL1wqi","tlshash":"a75504c0545031704c51d405d15414557055440014770401747d04d417f13000010dc3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.370271Z","last_seen":"2026-04-29T15:24:31.370271Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f437633fe35d86068d5ea4e479185da6","sha1":"f1a633a4035683b5b13e8d914e56c8eeef32c05f","sha256":"1e4649f320d223294ad8aa7fad61e2a5d79821731edfe05b85f8ceda015e98d0","sha512":"df16dd46aad1819dd49ab5c14f24f72d1ca05416fa199e12724ec5561d52bf033a7e2c28cac5f272f0e53211215be312b0ac98cf238ef9abb429b2670e51583f","ssdeep":"3:N/BKL1Xgqh3n:eL1wqBn","tlshash":"c35504c054c070704c50d405d3541475701504001575040174dd04dc1f7130050505c3","size":1337359,"data":"","first_seen":"2026-04-29T15:24:31.371309Z","last_seen":"2026-04-29T15:24:31.371309Z","times_seen":1,"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d258d87784a8c37b920eff0ff168dbcd","sha1":"622257a372c04f569aad92247b38c864bf156b21","sha256":"6591d1275e1695f10074ce2cd080bf48262844c7ee844e694898e1b27e30703d","sha512":"0b93f48404c87480d52714cff785743c19eaef6749b76d8c54004935066f9ef14b504f71794c79d755e2e4ae7f460442d0e97fbecec9045a9f0d1c8b57832d4a","ssdeep":"","tlshash":"03c09b887fc5e019c64526355c6f5287f639efa04c581053e052524ab6b0b55439ff5f","size":136,"data":"","first_seen":"2026-04-20T10:29:43.225234Z","last_seen":"2026-04-30T02:44:02.285796Z","times_seen":4274,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"086707e4369f60afedcafb16050a7618","sha1":"8216b0cc6876cbd44f01c158e7dff3833ceccd41","sha256":"a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e","sha512":"aade21843813e2cab329b99185c6f61db7907a556ea974e0315dcf3ad967cab20fee66d4f10db0d0ec43a71e086ce6d700d5524103deaefa3ce5f6be74ba5737","ssdeep":"","tlshash":"6a9000fee0a2000efc303bc00cc2238a0c28c3a830028e002ac038b8c80822bcc032c8","size":39,"data":"","first_seen":"2023-03-07T01:03:24Z","last_seen":"2026-04-30T02:35:38.147105Z","times_seen":844380,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"l7srv.su/favicon.ico","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.286Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://l7srv.su/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Wed, 29 Apr 2026 15:23:38 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCf-Mitigated: challenge\r\nContent-Security-Policy: default-src 'none'; script-src 'nonce-LZW5l7omreDK6yn6Ze37ND' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nServer: cloudflare\r\nCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCross-Origin-Embedder-Policy: require-corp\r\nCross-Origin-Opener-Policy: same-origin\r\nCross-Origin-Resource-Policy: same-origin\r\nOrigin-Agent-Cluster: ?1\r\nPermissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=(self)\r\nReferrer-Policy: same-origin\r\nServer-Timing: chlray;desc=\"9f3f4f1c487bb51d\"\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AOk8mvlxtnq2KtuDNoBHgA142Jtm3DQ%2ByD7Us5Jh3AsjU95hFMWXDE0GM4QHwYWkRo%2FHIx8ypIpYmj8DC4oqZJUBc897hj2w2Kh2aRkK84ezn06pcg8%2FkQfJ\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nCF-RAY: 9f3f4f1c487bb51d-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5539,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5539), with no line terminators","md5":"538878a7c07fa0ca97c06041a279acd0","sha1":"4cd1b3581eae55acaf6cd74c1302555bf307f685","sha256":"9d80e71f6d724bf49baf4a909bb15467b2848b9ce51aac3f1a4b038fbe82bd44","sha512":"e8943887e27d600c3629d7cbe8beb9633aafb2b6b78fd4913b5c55919619915c7c1477ec39b3314f9b0465203615ba213ac4bb58f8389f4eb7fcf1269cbc0888","ssdeep":"96:PNyFltoXZzIEb0EaW875Fx0oHGsNecYpsF7yWZ9sOf6MzxLUT4t4WF16JYzueh8M:PN2tkCBfx0o3McIsF2CiMzqctJn6+yBw","tlshash":"efb12ae3a9368027dfb57f9960f6b3ac9260b216bf048184bd91c57c85ecf9e81584cd","first_seen":"2026-04-29T15:24:31.283626Z","last_seen":"2026-04-29T15:24:31.283626Z","times_seen":1,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.232770+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":25,\"pkts_toclient\":55,\"bytes_toserver\":2626,\"bytes_toclient\":79019,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37704,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.287289+0000\",\"flow_id\":190701421350276,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37704,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":613,\"bytes_toclient\":5923,\"start\":\"2026-04-29T15:23:38.281988+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/b/0b8fb825cb67/api.js?onload=cFRiY3\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"GET /turnstile/v0/b/0b8fb825cb67/api.js?onload=cFRiY3\u0026render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: http://l7srv.su\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:38 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nlast-modified: Fri, 17 Apr 2026 10:02:14 GMT\r\ncache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: http://l7srv.su\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f3f4f1c8a7bb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52479,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (52478)","md5":"7fc36942da2feaddccfb76c68dc163b8","sha1":"3cf2c3600df9b3568edee8109ad843904b355856","sha256":"21c56a647ffdf4589375171c767dbe495ca16af374f0586ef7e7043d149862f2","sha512":"7a0ec32f8e8e3c7a3dba1388ec1582f48a98c27d5ae41d22e42979375fb007ccc8c7cf797a173172e0a129b56632ee0506185ed38333bfd2ad8bf75175ef5a4e","ssdeep":"768:RCF+72yM/vC9lEvpepYszeGiLcUOVyuOjK1midzGWbrsx1cY1DCPfI1lgiaZnd33:T2X/vC9lEvUDzeGk17jK8izs+/","tlshash":"79334b583256793266d880e1717b63437326793af94ccc50e427cd66266cecad233fba","first_seen":"2026-04-20T10:29:43.081202Z","last_seen":"2026-04-30T02:41:50.568064Z","times_seen":6619,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":18,"dns":1,"connect":1,"send":0,"wait":10,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/cdn-cgi/challenge-platform/h/b/flow/ov1/3047658235:1777472598:QwvSf5l2cu96FdZyNpRryW7ReRbimJWAF8Key_wde1g/9f3f4f1b1f23b51d/jZFkGulhUVTyPZnNsk1LYv.2F_yX3mBVYprwppVd2vQ-1777476218-1.2.1.1-VNmd2dColsdslEusb5xgBux_I_zxgfOmTYY9uAM6bKIy4YW_Z2JtjgD3p4CwuVoh","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.509Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/3047658235:1777472598:QwvSf5l2cu96FdZyNpRryW7ReRbimJWAF8Key_wde1g/9f3f4f1b1f23b51d/jZFkGulhUVTyPZnNsk1LYv.2F_yX3mBVYprwppVd2vQ-1777476218-1.2.1.1-VNmd2dColsdslEusb5xgBux_I_zxgfOmTYY9uAM6bKIy4YW_Z2JtjgD3p4CwuVoh HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://l7srv.su/\r\ncf-chl: jZFkGulhUVTyPZnNsk1LYv.2F_yX3mBVYprwppVd2vQ-1777476218-1.2.1.1-VNmd2dColsdslEusb5xgBux_I_zxgfOmTYY9uAM6bKIy4YW_Z2JtjgD3p4CwuVoh\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2071\r\nOrigin: http://l7srv.su\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2071,"data":"ItJEQUzjM1kL0PtWZjunrXAmUIR8k$5C-uo3cw1wPiLAhZSgX6nB7LNeQHI-7e6yyaTwQRp8S6817a6JeIgdWcstWaSnPNqNdeRkHkr5moGwD99KxdPBmsumhg11++GRAOr2lzw441D11n5V+2SX47YdVh+u5aNzDSmgXz66uUcDhK9DJlN8lg8N6JQewk$LqrM+t5gX+J2ePlotMQjq0xXgyU89nQC7MdaIkIja20FTnO0xaCCgx-g-CqjxDraYLhxWm$s29kYXG5NBV+22R1Nd-OsGpqU7HAYDeSXyGm$FHRihSDTTo0Im8M4RMq07hkdMSC7Hu-DYCI62uwcGnlaZqTJ6JsZ7J9i9Q5z6hOZEvvVlyAK3NeTBrng1EKqdBvfzjknCH0UxXTotnq9yLVW+zyL124YZmxZvGoZA+mw8Ix2mTlB8nqHkcr$mPq1j57-$3EwdFMmz-6SuO0JekrH3I$OC+6XMVWghB6$51eckqLSp2a+O7xZ1ZTcsmADYBvyQsicxkzK8M5KAf2yEjUVVrrc99No09lA1xrWlkYSfMayAV$H4E0HL-JEEaWw9dsxmuBfrnt7fGsfSFmqhHEQKy-JL3e6EePlpg$csvMLEMeU-iK7ptS9QJSqkeFMS39aYjqLxDNMr6H31PHQ4rimpe7ahiFAnVYYDxH09XL4Lmnhk42LcG$kluXFtiYeqcIwBrSHnzzdkFC5uyBp42peDrLj6sHFWEmtmkeKHzDmcZX5wf8Ah5QYcRDG1g2OdM7gg0aFi4JPd0GMfD1PxRrTcujt2+f00lRVKRssWAEeXlWLSx-gIvHytPvAyid8+MMPc7BRaDwOmUnevZ+XY55MpART03Su1iDjUDtWfZRYLUIv-lN$vXO1Q4J62Kw+UnQQz$MPIuYmrAvN6KsCWpD65Ec7fs1AegZltx3WNZsn-W0UZk3XQa4Su-divOMZYmXOiu$ts43Zxak6d-3JV5DAnIo8YQP3SIvmiuGkTHzjVvow0LA3SGEEqk9WE56hz054G+HEdRvGHdWo55Fo5UYdLkXdKGD0dSDM9WK12ITQ6OolHrXRCVC+wfuomoLURLBDPdacRF61A04ctDEU$Qc5vRDegkzzOCf6uAMgWEmmf4EhnqWLg64VePG6E2uhXG3RECHL3Do84Z64roX2yZ7fiugtdExk+TrtgGgm3ZZMlyYmo-lIs9yr$17+cxmVnh8qC8ztucT-DijcIojT6YdX1PY04W9fq-5zM0EARt9yP4KAQj1ndTsa1hGWSOmRpMzc6L1NvRLydeq9InzrkY9Cdd9411iX$FmN7fefvWggQw1njeJ-o5f58SepP1MIJYhZAPXmezJAWBdgv6TVgQ29L26Fpu1h7Qc7fyCydKr0eJf6yLKUR+pI$8xBrCjLu-rqEs+GgdjzV2z9dEBBgOekPD9qotqAR3S71vOKjy8Tzc7tkZ9y6nR5KCJx-HuGxTL88XcNP$GhxIrBKOsMwnqDaFNQ-GkqYHXavG1k3ivSzdQ7HecAhXU0jhcY0+Uy+XMoi2AOV29w00M9PFKiDJfcRzVIU2wa$TU+8HZvd55eC$nHKMTgddUyeqi+uFKk-rGLtG2IridO7PI+VzlOXOi775$BoOtXTJLwTRaf-aKG6+dUUTp4CHVesZ1zA6SlxGJmUZkSA5ly2CKuYyqCXSXiJuHWzhXREcCF74a$NsKNmSeH1SQm4UGrXVamMl1suhxUSnk77duAiAwy2KnqJy+-fU9MNpD0+ZpUYsv$M1DLuByj39W3EoqA27tegdh+O2Rc9sJwl8-w8uw7CnNG8yY+56QVBksxLweujyDxoCY+BQXTROnuQomo6Ot11qfkvOM4esac2QOzr2JY-$Q2282cH3FmH0QcUgsNW18Z+Yu5zOtF$hdOJIQKj9IdfdpLB7Fs1ZCQis0SHIL-U7Xp37TwfoW95gRoWm6sejE0rLF3gOYm6Y+QCLM0ilaeHFghdCIcXXPAA-adKZckf8HPLsqJBYWj8R0T1vae-B0Majwa8zaKqD0VIk3EJPJrF2Wg$5sGOGahss8AyuUIfgZfylAZ"}},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 29 Apr 2026 15:23:38 GMT\r\nContent-Type: text/plain; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\ncf-chl-gen: k5UHU5fQqhEG7tzByruB2SQjhEDZNkpPG9XOKViAszU=$9rsP79umNurxETv/ALMoow==\r\ntiming-allow-origin: http://l7srv.su\r\nContent-Encoding: gzip\r\nServer: cloudflare\r\nCF-RAY: 9f3f4f1dc9358deb-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18088,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (18088), with no line terminators","md5":"a84a0b1bed803d0a360fdcda08fd2d5c","sha1":"35d86b9665aa23e0b0bf36dda67997ee6c93972e","sha256":"b28d8438c46e3eb22fefe2995daff6f3f30f691a2f6a0b3fafcc4f9c90916071","sha512":"4ea1668512b5dd4654b51404971ce411f657e0a90fc290fa4ad0f8dd2c1ed1cecf92c2ab60cb528eae0fba7be8f13c427e0abc40f4e83500e2002bcb28956d22","ssdeep":"384:BRDzqCfNSpzy3IZBHU+WVuIdpsM1bTkycvz+KI5omcE:B4CNEJzWEIHsg/kvEkE","tlshash":"6782d1e51d8f87070291132c74a8b65aeb83835dbc15de54e1baaf83543f7129f13a16","first_seen":"2026-04-29T15:24:31.285285Z","last_seen":"2026-04-29T15:24:31.285285Z","times_seen":1,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":5,"dns":3,"connect":2,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:38 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npermissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=(self)\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-2BD5s81Jz4Ub753PPSjqRS' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\norigin-agent-cluster: ?1\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nreferrer-policy: same-origin\r\ndocument-policy: js-profiling\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f3f4f1e4b048deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: c1etsz6s;dur=241733, cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":241733,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (65536), with no line terminators","md5":"8729453ace02d6aa032f32e432eb2082","sha1":"a5ab0a003e65794acd07f4f7a6964769d22a9fd4","sha256":"b57320439b02b9611d421642ba8f2fe6a55b4662931e1424a10d4f8dd692a7d5","sha512":"50744a4af00e759e91a64abc77297320a90495d28fc04331a5fed3130888d42ca2c5406990ee36a4abd0b070c6f35fa306c5ba78ae8f833d0b42b7b90c86eadd","ssdeep":"3072:LOQJhZJ+r2cjm/woClmrXi0n1baFDsclBE/+vJ8enGESbxFkpBbytIQyfVFBBysw:LO8vJ6njmo9k1nIFbgMLnfSP24INVVa","tlshash":"3f341a893bcab565436670b9117b34dffbba2c9434881448d6419ce0bcad32c9fa3d6c","first_seen":"2026-04-29T15:24:31.286219Z","last_seen":"2026-04-29T15:24:31.286219Z","times_seen":1,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":12,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-04-29T15:23:38.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:38 GMT\r\ncontent-type: image/png\r\ncontent-length: 86\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 9f3f4f1edcf48deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2 x 2, 8-bit grayscale, non-interlaced","md5":"08664617b5e55529548cd422938f93d1","sha1":"0d142296a93d87fb61ae5f4de86e05c1338dd1c6","sha256":"af2a4d14331a154b454b57bece2f940a61ce14c08bdb9d091176553f9f9d851b","sha512":"5309c92f246fdd8111ddfc927cd0c748edad14b39c57ad66f732b26368ba29553f6e58aa512844055a3b6d839d8ee0cb3d42f6057064c20587117bbb62cd6379","ssdeep":"","tlshash":"5aa012c56184ad27c14a0233d1501520f8301046030306700187c8154511e4493e4942","first_seen":"2026-04-29T02:17:39.589118Z","last_seen":"2026-04-29T16:42:54.753829Z","times_seen":8,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-29T15:23:37.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"l7srv.su","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 13 Mar 2026 16:05:26 GMT","end":"Thu, 11 Jun 2026 16:05:25 GMT"},"fingerprint":{"sha1":"EF:11:9F:7D:7E:FF:0F:E2:53:67:9B:1F:30:01:B4:82:87:06:B9:20","sha256":"94:A1:72:69:5C:AD:9D:87:B3:8C:26:93:52:1F:53:DF:DF:03:CE:31:13:FB:00:D5:32:10:43:AF:8A:7B:16:18"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Wed, 29 Apr 2026 15:23:37 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-1b9M8S6uK3z09QaUlDs4hT' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nserver: cloudflare\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=(self)\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"9f3f4f1a6b1356a8\"\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=krv7tzLCmrkJzBVY%2FJqFjL0jW5whnE7f%2FtsHrWrW8bVgp2rBA9KXhBSkP189OOXcbX6xsoG%2FLp2KDtxfzQfNo8DwlDkdnPS4vIcoL%2BVhaxz%2F7RDx9UMzqqaI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9f3f4f1a6b1356a8-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5526,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5526), with no line terminators","md5":"9f686c2e0ffa9acce913e93c77c0e9c8","sha1":"a4c7dfba7a3ac835fb451c41fac4b1af8ed95f19","sha256":"0bcbc1bdb4b46734bcd1f9ce326bd1545bffcedbcd89de7a381f3520d8826cc1","sha512":"f069b04e52ec404d19ed03543936badc3a7306e9e3dcbc84bdf289ccb76c41a8e764dcdadff4869f0db0304499754482c737456552edfbd0e57fe26663668b95","ssdeep":"96:PNyotoXZzIEb0EaW87koGig5Lddd5OcfAnvLp3wIRkdX4RYzueh8Id2mw:PN9tkCBvbg5x/5WKI24GyY5w","tlshash":"f3b14ae3e67240639ba6bfd265b373583123f104bb0680c9e6d09aacc6cdf4ad105ac5","first_seen":"2026-04-29T15:24:31.2878Z","last_seen":"2026-04-29T15:24:31.2878Z","times_seen":1,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":18,"dns":0,"connect":1,"send":0,"wait":11,"receive":0,"ssl":14},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-29T15:23:38.093Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Wed, 29 Apr 2026 15:23:38 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCf-Mitigated: challenge\r\nContent-Security-Policy: default-src 'none'; script-src 'nonce-PFtPsj3jDyKzEQ47RuRvmW' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nServer: cloudflare\r\nCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCross-Origin-Embedder-Policy: require-corp\r\nCross-Origin-Opener-Policy: same-origin\r\nCross-Origin-Resource-Policy: same-origin\r\nOrigin-Agent-Cluster: ?1\r\nPermissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=(self)\r\nReferrer-Policy: same-origin\r\nServer-Timing: chlray;desc=\"9f3f4f1b1f23b51d\"\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VVjwMMMdgS8PS6fFlgHwov6d4ahXjojjqBF5WlnuFQqBOeKS8vsfOVGf4jQZqIjcRw765CY7NP7Fch0RcOiq%2B%2Fq3UraEWYuO4AWyaONw1JpPT0d6zLsr6S44\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nCF-RAY: 9f3f4f1b1f23b51d-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5505,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5505), with no line terminators","md5":"4670e430da5fbd50aea81b2c94386025","sha1":"7b137f70d1309cc25f7065d326b3ed02735f2f6b","sha256":"519fd4f11f795e5242d78665c2c6bfdcc3d618bde94e55e4424ab4708bc54855","sha512":"7f6a49fef73da007971c9fd034375f3e78c64fd50dec568f4a7ded95259c06d5f55b5ee8d677c2294ca4d899385b2247722d4f15f7fee6a628980c35fe8b728e","ssdeep":"96:PNyQtoXZzIEb0EaW87E0mTFDsROBJXk2i0aojYzueh8pmw:PNdtkCBv2FDsqJX78yyw","tlshash":"3fb13ad3a9b5602787f92bd669b6735c4264f749bb0210d9d0a08a7ccacdf8e40205e4","first_seen":"2026-04-29T15:24:31.288717Z","last_seen":"2026-04-29T15:24:31.288717Z","times_seen":1,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"104.26.3.227","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":55212,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.099582+0000\",\"flow_id\":429042041512894,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":55212,\"dest_ip\":\"104.26.3.227\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":665,\"bytes_toclient\":1654,\"start\":\"2026-04-29T15:23:38.091070+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/favicon.ico","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.228Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Wed, 29 Apr 2026 15:23:38 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: close\r\nAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCf-Mitigated: challenge\r\nContent-Security-Policy: default-src 'none'; script-src 'nonce-TF6ZgMFuwRZHOGf9bu1ino' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nServer: cloudflare\r\nCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nCross-Origin-Embedder-Policy: require-corp\r\nCross-Origin-Opener-Policy: same-origin\r\nCross-Origin-Resource-Policy: same-origin\r\nOrigin-Agent-Cluster: ?1\r\nPermissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=(self)\r\nReferrer-Policy: same-origin\r\nServer-Timing: chlray;desc=\"9f3f4f1bfbc48deb\"\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: SAMEORIGIN\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=u7PXrsoYvJSAwJ5BLg2zPxHnTasGB9ALLnMPpWprvEpauzJdRMPY96HaIIpaMWqet35Y%2Bwxkn3JPh7hD9F7ZrtL6plyHVhCh3FcyZcbYLA0aXPMen8ZuelNd\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nCF-RAY: 9f3f4f1bfbc48deb-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5688,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5688), with no line terminators","md5":"e00ac2524cb2960597e2ec98c824e5ca","sha1":"bf1ff7eaf964cf4c9027184205410ac66069f802","sha256":"c6a528728b065087f23bde1a4f439214a40d2b24951f3b7f22f05f5cd26022ee","sha512":"242d57cc3a62c4f49f87dee52909485d2221a0887100fc3e8234fa2954722d3c8e328f1e78398b145146355055da3b404ffc2619c2361980e353d2a344655e2c","ssdeep":"96:PNyrtoXZzIEb0EaW87NI+0XlI3YGSJwZPDYzueh8Rmw:PNStkCBW+0y9Socyyw","tlshash":"fac12bb3ae729027a7e66f9324fab398d120b30d6f0551c8e995d9dc06dde8a4008ac1","first_seen":"2026-04-29T15:24:31.289645Z","last_seen":"2026-04-29T15:24:31.289645Z","times_seen":1,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.232770+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":25,\"pkts_toclient\":55,\"bytes_toserver\":2626,\"bytes_toclient\":79019,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37704,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.287289+0000\",\"flow_id\":190701421350276,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37704,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://l7srv.su/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":0},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":7,\"bytes_toserver\":613,\"bytes_toclient\":5923,\"start\":\"2026-04-29T15:23:38.281988+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/3867407102:1777472599:yLfTvHfepq1nqd5treLwFgtAvQXXm_J9x_fpqFZPWVE/9f3f4f1e4b048deb/B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX.","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-04-29T15:23:39.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/3867407102:1777472599:yLfTvHfepq1nqd5treLwFgtAvQXXm_J9x_fpqFZPWVE/9f3f4f1e4b048deb/B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX. HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\ncf-chl: B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX.\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 3820\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":3820,"data":"4k3KDyLFvCFxjeTMNKUFBMQxY1wU3h677M9dTaxHo$Ne2JJ86f6x6Mq8qUPwvvOGGo6e9xYUtLTPBRue5VA7on3o0bTEKj2tQINDg+BtW9p+P+dJEYMreU4uPhFlfeEQ-2d+ZOtVJKGqHLnkufG2A1NS5w-ngMCJJb3a1ymOCaoYWRrX+9MZbtJ9xeLrNy44vj041KrAI1aY3QWFrB8K6908$89YOwvxMe1VmqRyAnnguC1VuSvqF5Nfn35J$HsuwmrhkpP2Z83+c5BIPC9GP0hAW26cYQNchXWRuWkVcqVxtlgGW48dR12aEr4MaBI3KghXJUN$0FP9wEskJreNpLDbBNpId4KZgGIxVNhwcoGKA$OlJsyZO4Vxy$WGf2OPnbs9ltqzuXpexU$NZvHwr3JwNL+7IkdZ+dyZNLpc6E91c5JNAh3fcw55YNTG$6F3AsVE9qPlXuQY9lpVxYwFRGW18vRnOaOjY$tpF$bvAM3Ta4sKFAbxP3pj-pZzjMt8TC+mQHGsyzguBZn3CGg78UMcP3-srU+v9sA4tx2J2yZAwB1dT-mnsLWJuz7FqEqsspfs9Ex$4SO-rTw7bW9HIoaqCFEIFd6zW24wbzQmATJBhozN1JrNBL7g-RGUfvHWE7ETXrpLbl53DJgLfv1NPFJ0Cp-7APtvm+5NZwSYyMSm1Q4bzIlUDbgJxMvjZe7aGls1MHhxk8oKRZnHE4e6Vx5ufB8-A6F-$Jx9-5PX+XUzwoa22P9EdZR6+j$ae11fyLjIywE5woKlwdyo7a+h2Z$eRJ15tm5-cX8VCI6yGccJPB5Dw0a3I9LbF2hhNt1R7VfuEqu9FWmobPLaq$Vz8VS6vajDscGmtv0yDZIJ1IZHwcx5OfAxN+6Eds11jN8ydaNg+1XeWR6lkJPwz7q7Wk$beqR$uIBlmAjwddyR-LD8-ZOt1GWRMzmae+3$kMadc0m3$youYmzMVBuHbSs7KLtYMDVocZzg7jkBmgc8BKNoRH9s0gBzY+fTBbM6yT9mStg8aE93hEs+RPaPClhoSdwl3$fl4JYrHFPU-dBloCoN6u+MwzOZs0t5aHeAxJLQIfm4D9Q-7GC3cX9fD6gK5H22M8xo8wHJvamk-Cec4yqb-yjuO3TffnnjbsQGJRoET$L+u3X64fbc4leeW5G-HZcCbIR6uDFg-lFWYaJ7w5Y4zN7IQXZXqAWcvubmBrbVvJk79GrVulcZH7xdLFIhWwOHGxkzE$rMhRKcsb8GZpQ6of+P-9yzEUnwwmY1yNR0ocLcsa3QC4+eh6OWrCHFy5uJGkMZ2pSor+yqpcu8OwaEJWJmrj7$A0PSKdKhB4-3bGakrHzWHYc3BQVhtjhVu886A$hZsJczHwbkWXC5S2bs63mcJUAR-cGq2wEN0XC5qp+HTncIxVuhV5VWz-xoAS+WbSzJ+PPYfcVUPPyehFo905-+NW5VdrjT3kg7VYOYRtAHcZ2YS2tCz3Ie9NNffsdjOPgfYIdOw62uOdaqbZHcJOFlZPOVrq8P8EmrRYF8crvsfOXIw6AGRdS5dVfrItkcmkwnZLqxMuJHxYU-41Dm1BU79KHhl2WLWSUsxosyTDpvtND7gwL+NnaJooTypDoVytcDOyr6lPxujxID0UBvzTzjxz-CgIJjMTKgPl3MfJ+sGyOvqby2l85lInB6HZNu-azpL-VwuHt$obh077yLLhhdjhjQolcLDxCRBCY7-9NPCHbrHr-7htSht1$cB$VRVoZIsstK44vjld5flqbfeJjEFxYpmTEz6j5qCqOs$P+ZWoa0eWrUvVGcbWNShRQgsUQm5tzA4nADvtHVbhZT3Lg+Ql-z284u+CP3HPxQlaaZI2kS46EUxo6TdRqHjBWlvor6E+fT+zS5e2LOcIoM7JT6VY63RT1cqByRxmoGxX5aINqy7qa7X0pWQ1S9SaNtpA3sIq7d4MDPUbf6pMDEa1Vct3UG3Z1--czAQbj2yk+BHteKIPA62ETs-xuJjICFtLDQJTT2l1uSw7oMB1dnxLzKhnXg0v9p3VJWvK9SYRa$w-v7dR45nK+m05ahFXzcNeYFxBB2-OypGAzZhFICGUTeIDwEKNoYCxXM1Fq8Q7bg$fAm9kvJkjl33oYrTVcoYY6opHbB3g8LYWscGClS-G3ne1fZzwazNUz3KeDyP$knCN9LCn0HAGe5qtr1SxyQFJz4jeep4ZuZ6dWdN3whP0DvsqqPKvPkRSNm0n+y0PLdPPeKjUoPrO5Y1mt6YYrd7tQjRa3EsrvTB2f72m$kZ6xTvppMXa6tA$sQO4Va7CJAJGSg9ggKwdejsNtqoaz1I6-3y40c9$y5yIP36+xhbt5Ju2g+a5jtlWeUUDch9UYJXWhDJf9AaBV35D9XVSz45lnxntV25qLYx-X5VBqLB3nX$a6T542ZHHE379mbmdtXR+ALn+s7moZOI8Fq0MZn1ZGMfuFurOQNRuWv$kbx8P+cla9g$XrWFvF$LXFy6JmK+1+b3YJ0tOjmZW8kssT9Qt7+-9yvIqRB+WyAM45ZB7oxI0al6Y+WOZXDfXf107VWLhyPPTUpAVEX6M0yARM09ubnC9QX74bsYBA74aP8C5l+xyGe$2BlBaw4uno+YLNcq7s3ETOqYNhXzq1clhXUpgS0pCIjWzL+xLsvVeRnKpopfLOpvrSG7K2AX$n-lo$ahzB-8f3Yffhb2faAPMQ+d2KkSGkTWQNTon-$jsRaFCvRwf4fCKjj+2GJnNjuQQeScvRPeDgIDfkSaZZX41mLRB-9FI21W680HFH3FBbgV0NsmHxY$YOcuBjh4cB2eOWtbpmRFqe$ud7cCTqeFU26qUW08re5cJdnxlA+NP$4EB5nKPcK-JNuQEYXUJg3GsF0egnBBI2v$erzwXPKmzqbEEsgI4rwxcbc8v408RdNyoGkhoL0yRs27c+IIMBzDp56t8N+bVIpGW10Pd8qwfvZ79K3S6WHKFNvtEgXkm3fDMrvIQnsd0BHYMPVU7JhjFB6oUOUEEskOC7YaxEOmY+UCbKS7vnu2dhcog0rIGP3qgr6mI6ybae+1Ztu07-qcsDWvYK8PPnmqbOJrPsrWpldalDjE2kxzoBd2D+BcRAJnV3Qq2AG7w0UxVbBJKgGdFGhJJctEEak+1yLYFfSqFt4eYqR5eCXog2sNHQR3ldXcZQb4PnoPqxPzuVGk8eItgS$61Ex8o94kqjR-Xo5yEXTTqx3POWQYguXPQuAZpk06q8fk99A7ae9WBytNA1OWqlMflZHldAwIhqTTGNwApByxW3h$KZ3Z8021dZnc9coHXO$YU-gAcaOyVK-tXdLuBZIJDHP7NZ7wu2$6PIOyrgeedlxAdW4a7CAyv5EnIUlByz1arFCG-1b$GW$pLo9BMmdWkZffZMs32zm7OoB1yCAU7qPdXE2XFHq0-pvu4T3Ab-ymEtnNm45ow7SVot9qE2RxtrFasP9Mlvc+AzypAszwKbwCZ6zgdeH-3Jmgl6ROS4zjvu6HdHb8MhyNbZh1+PxxJHk5GXWGRVPwwaNI2Df50gB2r8BudtBzbgRqfh22XQUuJPc0t21eApZRmsE-pSqb$pLa+nzKoH7ZbFwTRp5f7COfKLXcwHGaRP2pFxH8UuqP0I2xem6IEc-bxt-DzxTzAoOE0WVnhFkM8PSPrRlPj1LwjttGe62hLzyIU5I0tSBN8FJ7BQ1xc3k$lE3fOMy0pktQjLXnI896gn1nUQs8$mCmA46gEqDV7Z5quR$ujXNgeAe4sA65pGXwksS8V-XsmJmmpQzvTLcIQD4AL1L1N6WdPGtQJXvJs7cG$M$"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:39 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: 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$VlWf11pW73CR+SKugYmdmg==\r\ntiming-allow-origin: https://challenges.cloudflare.com\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f3f4f20fb638deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":369744,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"77cca6b81a6f5523e7091d2f87f6c959","sha1":"dd6c04dd26c7432a22fe887d3670e4289ed5f863","sha256":"ac50772baca2d2430ed810c7f0c11f5f5715864e89f8b551289366bc600cca92","sha512":"e8f2978e74e0b2dd07e60643933e74fae2927a20a905b402bbbe77df10d2ee0231455c84f85a7056451aa4b8e1900d07d972dc9fd07cab9431fc5d8d1841ff03","ssdeep":"6144:bWujMK3YT/7vJoHZdrdNII0/9tog4zy8xe+9sXijgyrPZuZUpZZ/cwbyvZHDRoo:tYL7a5hHII0/96g4YXivI27Z9yvZHWo","tlshash":"9874232d7e2b1fbf8a7845b70576dc0698018fe5082721d499ef3302564ed88697cfab","first_seen":"2026-04-29T15:24:31.290583Z","last_seen":"2026-04-29T15:24:31.290583Z","times_seen":1,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/9f3f4f1e4b048deb/1777476219043/feiEqdYB6OmlqSE","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-04-29T15:23:42.310Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/d/9f3f4f1e4b048deb/1777476219043/feiEqdYB6OmlqSE HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:42 GMT\r\ncontent-type: image/png\r\ncontent-length: 8179\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\ncf-ray: 9f3f4f357afd8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8179,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 89, 8-bit grayscale, non-interlaced","md5":"a808d600ffc196b88b1b466bf182eae6","sha1":"628d2ec8e15eee878ea7e288d9483bd6227a525b","sha256":"6186fb63184a418fcd22b15945545d3a00eda53f7908f012bdeb1229414fbba5","sha512":"a3a05db9ed9da37081e2b8f0c15aca797ed18ffdece557d282fa36444a9303b2c8fd7a4fb640138be55bcfdb5f7d5f3a702cde7feef1793f4520b3c35c45765b","ssdeep":"3:yionv//thPlqNT5E3CUxKemsyixltGalljp:6v/lhPMZ8CWeix2alljp","tlshash":"e9f112d55124a87cd408843580543610c46202cb003045594606cc2d1905208d3d43a1","first_seen":"2026-04-29T15:24:31.291542Z","last_seen":"2026-04-29T15:24:31.291542Z","times_seen":1,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/3867407102:1777472599:yLfTvHfepq1nqd5treLwFgtAvQXXm_J9x_fpqFZPWVE/9f3f4f1e4b048deb/B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX.","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-04-29T15:23:42.702Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 19:45:24 GMT","end":"Fri, 17 Jul 2026 20:45:20 GMT"},"fingerprint":{"sha1":"55:E2:30:E2:B9:65:08:8A:5E:4A:A1:AC:70:12:E1:69:10:5B:88:0F","sha256":"34:8B:B6:28:AC:C0:28:44:34:51:7E:85:03:E3:50:1E:04:E7:48:B4:99:11:CB:23:AF:24:CF:9F:63:C2:C6:1E"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/b/flow/ov1/3867407102:1777472599:yLfTvHfepq1nqd5treLwFgtAvQXXm_J9x_fpqFZPWVE/9f3f4f1e4b048deb/B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX. HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/f/ov2/av0/rch/zva9x/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\ncf-chl: B8fjIzbAAnqpeY7GH5j95POhhBTZmfl9eeq.FZXlwR4-1777476218-1.2.1.1-e3QNHBv5VNmjezFLVPkBpRzq5oCDfOiS0aEnEKusJlglzV2eCCkLgROpLhWFmuX.\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 32162\r\nOrigin: https://challenges.cloudflare.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":32162,"data":"4k3KDyLFvCFxjeTMNKUFBMQxY1wU3h677M9dTaxHo$Ne2JJ86f6x6Mq8qUPwvvOGGo6e9xYUtLTPBRue5VA7on3o0bTEKj2tQINDg+BtW9p+P+dJEYMreU4uPhFlfeEQ-2d+ZOtVJKGqHLnkufG2A1NS5w-ngMCJJb3a1ymOCaoTdUhwWqpk-HEm4NQUPfp5PSD87K+s78RxPewdJVsBe4WxLxaTvYtAj4cl0aNsbg6xFowmxPMnqmF1d1ce8CgfI8mk24gwu9CdW9WkdhZZc-bNFGHzchk2HKVt8XLgVLaCyHSgDIHX0htxm5yRbWN$urA79L$Nn2mqZ8CCPe5mf3C46k+wQsJWV1FHzLJBBvyVA29ybgX6Vw2crr1dxj$D86BKZHWcD5SahJI1Kn0IvtWzdgbNrpcsjz+3Y4RD0fQa900-cQHd8ZCmuzcAR4cnPFXhU4J04QaVgleQKuBrSPb$4vf+SJ29pjyOM2dfpgNrqr$alg5MKkBFxMzTDh0E3uktJvlruj9Omf8b8GDzu-dkhOrAbS7FDC3N+qpM0tTxy7ysHs2lmseRnwWIBscsTPLomeZ+j5+sv$tJ1j5kB1DV5EZfGcZNCdhdhQr5KUcE+r-f3GI8nFuoGFHJy+eLPog1xKmvF879E1D1zU2zuJ7xxGIX+xbzNPJ86+Lg8Jy6SaB+dQ$BL0-ycXb3JDNFMAW-kK7YJ4XFZf3PCGLpE2FLyShEA8HcfWqGlpLRGKaIjqJrHzb2Xck4+fg4uUzIDjvskoTeelbOqKzxWPj7zKfV9VYUjb6ED$InrV2TOrhhT4Lj$3LzCCKffDmcWFsgoHpsOYuXY7GubZHCBrXOoU7BaJsOvY+6Y19EOGoJSxaRVE8gBmV5gBIPG$tXkDq4hH$kas6EmtCSEI0M+sVDqkKvYGE$3+uYs2Ifpqy79opSOlAzz0Aat341ALgZrjkZmsywA-0bM6ldy-xynhGL2VoL-FEo2NI6ngtmU+95BulOtSe3ERAjPYzpoQA-ZKBOc47xnyy1yRItg4XHnW$c4ZSNQNFuEGqpR$EpbWgVPN45-uEhxEDwv8-CzyUwB1VZtG7CxkUq8BJmoRNDu$ocHT1ZQmrYKp6TEPEq$DJeq1GpSNYHA$TkLIU3E5lv83fjS-XuQry7VNmv2H5rHAYshApEhv$rpxEocuvBZLR$7FwHdb7jG+sI$KYlLezRxyypoql1J$RhokQxjL3hRv$cdk7MAA$LxfQAeEN5c$lQwb5OAVXJAO8HedE+rAS8+VUUoPwXI0OEpRMIXOr0xN$d4fcMa9o10LEkenvBqkq4oHBJmCVwIgsF54rKOj0rE86zCsvSrNbg9eqW$n+fvany17B5tAQB5hf7DsJS82u69M0A9tBd+1lsp7clvcJ5eRW8-3q92tJvSQTcTSd-nPAILsSFZsWvG76xM08C8FKRS6I-e9-DNb8dKowlUg8asEgREhEKsjaVxmrzspL5LzKfj$NhcuRy-oqXgfRRm2bDts-D4RwulpdkvyBcU2NnEUTQdj8D11tRB1Kg+qxAgU3QKkI64EWN-8Z3v2f5j7rQM2A0s74VxSIyjGWAvm94-Y2gjpj+Kp-Ts3ce2MgIod2VCt55Rmfrg12mQawNL1I+UBPQ1vKgnOT64w0pshMOcNn-sk5cLh09Q70AemjDnPwunEy-KPE538mTt78y-jj1e6ISPWNXoYyYq9QvBpEXmrNStu1SzbFKIf4Zy5ezzrBoAL4T7eeKW-jJEU83Mav1LcfyIUPB4uY-Jr86tjBwNFalzXUkTQg72SbC0TN1pJG2233wU-O3pT9+P8pbDPzcE3IE1QXgm5HVubtk9cNMKypc0Lsx1P8c1QNPVTWm-0e+sP1f5TRM$Tvd1qjf50238G29wc3p2zA12jKxYUWnAu$DJf9mR1H6mIK9tFDfTrB+xnbgy5RRaPLSq0ovIhBCc3tZ0um9y72o$Faph31Kg8yNe-NVnegbuVUG9xoMxLOWS5kcfokaw$ar0NpIvsl3R7G0vq-EobEk-Ogzw8tZco4L2XBcI$3LuNMXOXHwv7$7OZlmtQcmJWptDIJyuoLWjOfxXtecnSruCBLgW2yj3pOLnLkktyQgxLY3dg1gILMAWg7Cmg940o3GlCdmn7Pnyya-aLvedLjMWk9QOeuWccyWHu9KsY3J7Fa7T23GIbfcsfLox5kYU4sAmxO3hE02fy+cs-fmNkF9PzQfM2OguTxMFBfIUYgKmJORo44H67K1gW1pPtI1k7hSWCmEaLhPXcVrANVwYT-cVBcvC0kGYGs9SyEyqHKTv8F1VOk6D1mBKOoqOTNsEnCCv-T6z3bS2SGJzuF6Hf-B$GdoZLfTR1QWnv5pf+sQokf0bXQj2WMwhmQutG7pE2w7YOxn9ZKLO6PbgEMKWGEetrWe2-R6EDQoUnl6wxqv$74WlC5Vh9gGVpsrNg8zX-+mC-53cOq+hVrF2k6c0fMys-K+RzX9mQcLSn9BGS9cWRB$fodZa0oD1If-B9oPknhfbWfBTDlRXJumx3a6OWN8vmI5ta3DchCjcAUr$PBcOXKJPcfI7xEB3gRLxz3wnt$p30bkkGOGF+M9mfOyeGYxTk6q2aktL7a1$wc-93uOSbtH4+23YbC-jV9vpB$ehQJTpHW+bJlLjJTcx3JJmmuPoe+24j$FVQWyQzPPVdzTrPxh7Zx9Uf-fHUy3KCr5vy0M3hoPRJZeOJ$d2shR3Apb6bJ87BazaPBA5$ZO2Gm6UWJlFyUhoQ5UANbIy80hI0qgST02PG-kfBqo16aBOFzJhFsq-4RPfGdBKWUlUqVuPq-KtxrtysvNIX7L7XPqk$ff+wbZkM9Cnn0FLHN5fKIsSh7ob-WlLOvueqFf2ucG8YnCTKMTVrWTCb6v24Tvq5euQaTH7H0yNIIzU-XfAD44USCM1u5Bagm1dvRkIrT7N1suEa$0$JxLlufDorEj6M6-grBFrk2BW9gzCZxAl-4ggd8CRl6q5lVPwQFQV6G4xn8VSyotWtdv5DBQqS-tgrM0hKkKKvODIAPug3sGxNIJSEwhCt+z96YqhYXdDv6ACHF8aJ18wuAfQBgmYw+-dkOoCP$Gq1VbzMTsY1oQH1WNH81DGzgFUT7hUHAcUIOGBf82UMIDhd0L9EYhPztVRqVODeRopnaRf5TePKLL-xFgC7uvSlH-mZPP$nY7d-D7BMqAXxQZCWakrYMy7Szd2B8lkK$mCtUWxkM$N3DrBo6k1hJtcI$DOnG3NwQjdHDemN2s2kZ4HlJW3MlRVsrzOYDERzpEv63mINcvIrR-YdcuG85Dva4oRkx09G$mCmCrIMVObMKS2N80XvxPIEcrxCcn-TxuboeCPPI55yq5NKFLfCgoj2Foz0FDlcmn$gPjeJ+bD6X3Ja2sHRyJe--3Pag9zMr8oopGRnDDZPPLceYkhDbw$rd2+4qRjp4XIoYyvL$2V0pCYnZpWT4faaz19A2ftktDdhudgmRSTepbT0zhdMRDSszDZIznSmkvEKZN3HOYRML0BBSwayGJsYzY+tQrexgfOg0lXFaY+7CoqZ3V1fD1CU2g$HFb$9wIsBL5G7vZcwO0yc1mFeMPwEyKSfF2YQYv1fD9zMpohDGSKyPjRFjYa7HvNggFxpB9VWEcxQq3R8jfYRI4XmMBAUwjTGNdmf3Ub1xwrdX7cyU5JDVhWFP1Ute7ZBN44uSNJG3F7v+EPUDtMWG-ET0eH1D4U10COS2OwDxoRsk+XvkSbTetsBdSRkBR2EgvjlzZKzr2BwAVOy$T0N5eFnrFkcP3DJNZu6$pAVhoz9+HdQhWGQpMjEfrP7Y8xUGX4p9uWJu8TSkGILFKYBN+Ide3x1m5bQx7SDoYJITuQxagh+lzFHwvfVjjqveoV8XItr9-4YY8rAC-JyW8+T88cbLhfzSzqJIeXgKm7K7Ml22MPUwnJWYPLh6JLy-+oM3rYT+tfd6h1ZAXrc$9qIzfD24psrZnI5RjVbXrsy8haV3CW+jXqQEme7a1az4UT6AOdenT2ct656OcJFa521SdQaAkya8pS5IoZ-v0aF5NR5Wh2zKGy2Fp$QU2a-RRP+qSVmW1e6z5mvjTI4QtCy5wy+UQcpWy0yd+g$g+ZVRuPhRHzgV1fb8G8zwemfX$2$4I4xJjD4vDHzLnrdGsdQh82euDqKWrmEcrwx+XkK+FyvetW$jsaLFMcw$E6e+KWyfl5ywryTloV01V$ZHoUIRm$8VQTcsALmy$djJoLRjERMuC5F7gYbcTrrgKuz3PYCMh38w4Po3HMtMpCB07Vf8hRAG0tWn8eZNVeeM6tHaDetSjdm2wzB+H0IW$VrhCt5OpJ5-J1PLgV3VAGKPOYgxZ7PkDjIafPQJHntU$yw-N$yfUkcOgg2JaqNfEqnWUpjlMNW0GA74UZYxJYXpx9xMYwt0mB0G5N16ug+oHoAX$QGGeT2MXYgp70j9tak82PVfZT5Y4RfMHVT3LmSwdPaLl4uJvlZUSehDgbYLzI+YHAEQ4uBJ3jIxqaAbLurMZqLXWL-rm9kRt366Mg3d-+E7HGR2RlpkQ394Cu9k4INu49g0zqOtJx3KBVwqHHzKCPKQ2o0pK34pxE0v5AQl9IT4PXMZW58yXwT+vr0wo0qlNXhIZxOgjm1s+8ggMTUh6XMuCUhnuB$0lw3ZI3MEmIefvnmos$coCm2Xw7QW$za7lEwvx6VakgHZpxLVH3Inx92LA+Zr++gkdJa+03UbcVQjJYd$uv5kqCyxbQLksa3fCTMGyRMnNCN1uMrSqsDAMS38UT80jWIagAE6BaXtfSufVKcBUI8q8SrxuAPuC$nNyJJnZ+bzMxF8R$oau7N+SlJ+9AYGdepX7V2G63wS$W1m+KoWCg9q+SD85sK90Sd4nyImM7XY++eWWpJy3B1op4o$qdRGbthzQoS+8+bY7RDnu1ZeEUWFKFfYwn$YmWGL4nkIopx5mL2luMxuxBBsFkZJvIWhII2u9t$6z3ePe8Nz2CyTmmEJguIstzfl1AvyQkfoTyQrN$dty3rHvSs3afx0FfDP4jnLHzG7MkUeEm+p8E2ZDJh$f5AUEeea0VCNRRBJZ4zJUrh+tWsza6uzz3a8TgG2Qxguvye6jykesP2B$Mo8L1UQHvnjp-qT9pbVkkt2D$yhW5rezFPRXwtMJ8TIq+uBLbBd9hYJFe5VHnZhnM1m0jetrDLa+ClTGC1d2U+V29AkqmkMULn2o9uC-BDyXL$J3Qn4rZB$pq9TRJ$Nc2zOaGlBDtC5muTpcWFz+elwXgVnv2y+O97l+gsrjaGP7xQovwEdwI7XW$OzPrK4dDfJLOqZ3QHflSZ9w2HE-gheaorL2SKX2fgMSDvQFw6YyK+vC9xQ$0B2KJ+Sf56DoUkadep+$Y$ELpIaFxI+Ghu9U+thfbmNGOweb1TbpFzI28DdJPmUnW9fmLgGTKCtpMrL$W8S8nOH7kWEQzuRJ1tF-TvN+2x+S5aghy2IckhDnNyeK7fwwJlb5acVELTh6gt2LMDxW0k2E3A-l$b90bq09n22m1K7hH7+F+g+hx8DmrFa0o-sj79rJtseYqW+DYp1b90RJWSfGEn2RvMMr5qgx8MxPqsrwm59I-tp7OAj93fwUXP6uDP-xbKr6tJTd2Fxd9BOfdLSakjDN0JA45kGhoJVwt0vnqWvmjH5PA3HBc-AA5y4GTW63T7zUZaDYnokzQp8Klo-DVQTa0MdAA5Q8TtNgIesu6bc8d$fxrFMbS+fzFxF2XW8M6PcFO+Lq19AgRsMFNnXegpjz-97yFpIHbOVAs8-qZY8DGGVpp-aB9Ekk0zO9N1MwZEkV+wNJK7IqeRAV$FMmRy2v3xNJmyz5XLnq9+EAXkQ9AZTHG6vzfumxRAy3jI-VQ7FdwwHlo7$Co-Ep$BcSUqEjyONrESgpKK1hfpnvRnQeNFOV$dK2URuQqarQTNVLu3fBZjt68aTWbsPdQvB$7K8sfE4P2teZ$GbS7xUuRcFBG18YCV-AvokRlFntQINKD0U4X1FsQ58WpveMjLs+n3pF+ccOzO$Bvl5QlObdh4EqlTUz0G$GnABCZXRqD7sC5UZHT3p4e080rVQa2RZ29HWt0cZ$ptTTwzX8fPxZw$2c7+hE-+ZaKXkg2MOyuVsI1mN2GavSX3s8wG+E6S10IfEWxQ+jW4VRrIP$yX8obvkduAPOkXAmjb$ENRysNVLbGMK0bKWCndc-wAEHXxzI5KwhPy24XKhVPqh-h5N6CzvgCZf$Lw6GkAyU+YCX+2jmO36ICPC8tQFpqe$u-jsZ2dXGjUvD0S5ra1mLvj7ZtyeoCw83m24ANVxr0C3T9bmCc459G0ldzCWCvl6y6SZM-NekbzxF-G-587Y6Uw1J9Sk8gx31QS9sa-bzgbOaJykPqFQrmq0jG745ThMFoG$P1nTygprXcoyjG4ZrkdS3IARm7xUWhC5lMxGexyyGAEaa5sz1a+Fl4XLHnfCjBG-dEZTVpNw7PEW-zyAfZEBtIjHTQxp5Jq3IuHlV66TuLOACU9lB94IPMj+H$fRSggLTqxMQUq6SgMDvp96FVFceMTjuB+Q+gXa83JzHSljz3guX3bc1pfPNKpFjFAV+5XJGIYvQqKc+$wAXegofbkvhWETX$K-hepuJvFf5g2R9U9KOk0kVFIV61wfQD0qczu5E6y0CrrZpLlmJs+nfhpA5PaeEbLoc01ph5BXNC2I6pj7la+SUmJ68OkG6o2ppMdCaa18+Saru8paORumks2BWv3J1yPOeq1p5NtEAB5an0H4Ous1MtYo5ZjJ787GvGfwMw3Ak8kS09d5Z9eeZO+$vJXYnqAvT9vn0+3K8h6hXD5DvHKbVSRu6E8wYdTflmpgZML8tuPJFA+PWEBE$wd$YOg7fwNpVuWg7Vcoyq9TcprDHAD2fBOK5b7lclUaO57dv2ZQCdNHLL8rMo9ywzyK5KFZAURhr4+vZGHvjdUNuf98ffRSqqOJzh87cW-Rd8nzxRrtzugnLYLvwnN$cAR$Yf3NkNMzSd-OcIHywI2VhJd8ov6BTWrZFlXAEzRbgzIQYCe+d62+Vra4twv9PRz3MEtOr1a5G-r4od7fBRvQ5T5K24AdODWjdmUq9pQLG116h7uAjpk4m05t0ALse5jjx0F06AGBEYdwAljvHNPtzC8pb23dF-N0y4wW13-3q+ZyAP8e37sOslOBFUW5pCUx+E0qDQLq2ZzgLGIX9jOlG9P3v+fs9SPS94KwPam7R9uRTVJkkf5qId1f4yg$wRSx9eEWUkI2cEp9rLO+tQ+Sn2uBuzlT28gRMHBOum1gW0vBF8qQDeSag7WznSQC74MzWbl1PKNov+3JDOR6SqzO+L5GR7sCgqjscyTHEIsJ1WS5e8fK8EJXrxaSNZxBRSyqLHsjAfY4A+mOVzOp0$qALlj11G5BYZjd7DzmXeTTw8GN3gqeIyrqnLlhW2n7AwWfnIAhuRx6aVlkJR6$aJ$pyhmzfIA0hK-8GPVjRLvzAGQBPQtZJ03B6+G86CMNpUmHNMzyGftONCgB$QTSLoSNQ5YZ5n$6rQqzopUgRZWt+FRDwkfoLUwUp04StrxUE5GfGsUboKq3Ih-V6wsspwc3Aj4bw6gmL8H58cFZoLz7HYb13KgYOjq13O0z3$V3tF+NAGOHlQZFNAFJrt3xgHXRhqcF1ZPmXues+QlmA8X7vn2VCBH8KjxHjAmYqvph8sr9mVw1mxcZM9VFyWvBffejR569Gy2tBu-zsX1um3Hg07gmt7N9zY3jPNagQTtkFqlWYVKtXvEVIlK84Jd0oh2oBWlkGYq51+BcknSnqayT3DMu0IxToC8K0cIZlTA1z4sevWe5t7OHazzmENxUwGbYWQjjdzmmuf3qsphzK3PAxsga-VjeLAuwkFeZ82LGctfKpv4c$o9VdbtSXA0cHHtDQ$92dh$+V18pmV6lcPsuwAebDwYjU+PwNgsnCnd6tIsSPLI8ZyvhSrCoV2TqdBX78P39jV6UTSzN5WzuVz+42X3QK0ZwkC2j9wfTln399sv1BT9DkV0LJBv$LKdBwGt6xj3XzPDWzySv0CZL5Q1HzG63R3Mbwv+IxwX8a-RmGCYC2HLqSKzg+zAbe9U1rtUoabCGAS+u+TYjKpLRg9BV8c4ZpZDExNcLMoPfhEGGoAX4+xDJy84lGU+Ld1dl--OvtwqDkNv9SsGKly7XqzDbjNAC8hrClT110K8IzXGx5K6zv7BLdw6-GjtTdSy$pdkS195zjcpI1H9rSKNznTb5CbK6e6mxOKm1D1Ed69bdl0CCnbT-UR9w8+hP3wEH2CBlSbDl07AWZInF9D2cj6lY+7YkB0CvNktFIQslUW-QsaLTfq$9$ZfnqGrjKonnPheDfGV55eqbbTL95mSI79jV0os5WfDk-zQsBJ07bUKlxBL$k30DA9Lr4NEBO2uacYqoQAAf2To7zJm93ZVY8TM8+m3Q0tLcUOtOB8SA2Ogez2BbSCxMAwlwkzuTW-z+WoDfKgWpU5XAQhvN$dYnQOcwhVofNTefCDCHvf8bMzRp4-ufnCkHdcFsxRX8Nqym$7pAKKsE$68rxhRmpjYswKCAHM2EPJFwGdHC-fTw0R3rQeAslrejvtYGV8xm0jTwzFVOHdpLYF9st0Pz7uXz1WhmMH762K71OeUSfF5FQysrgY6s+jwzeYp260EZ+JgElZv$FYsRXNZjMYv4ckO6zjBYo9MzjhFjbICzrZ2MFbICWeaJpxpObHKkzAMoHNNQGZVHcZ5xCk4P7BgdYkchv7VL65x+u+17j5FcVW+rwjIj9s-4+elxUATJ$yEP$Y0wIuzNs4OTZrMTDNQOaC1GvsAGVMsdAmDhmLPeQYYtmxf8-GKudrzYG$X2gqchajopCMv$hf$7gFzXe4t481g2FyqNaea239BqqszrZOllY1c4Uv$83M-TgDlTBadwGNuQ1m9pa4M7q9NZuNrRNdCHL9P7wnUxSDA5ebN1QfaS4tyNFJnOZVBTTjO$BuWweksPTtO7D4zO3ZrtOBNGCXwDa+8T$zbRHIXN+KGhBdAQfNltRCDsg$07srsmVwzDhycEOEZAlI5hpsz0QIS1Je71RAIHewTyL0DCkuLpv152PLcH3jrFFvunNVw3EIxEe0ZIhx0rkgD5nODZHMa7F3axSdzRB7vczLxQEXShz8S8AowQ2jTpKugpTdzU-Bz4eO$jcoZ2LcHzZdd0J5IrJhcGOfnFN0x9x-CtT+f5WEhFwVoMq1OkA$t4d4Ke9aH3tkFDTg1LuI4xpmXNRJbuq0ndxjGz$EkX1VfcTo+qIcNGHPgDl9+gkfFax91EO6hIKWN1l9OX6sAzbT1lf8D7PfoyV7oxE+X8QIZIxYBrEn$-gculgQ3V0pdhg84v0jUrlvUFXW0Uerkrva4+P5j-fsaDtYJw9EPnS3gzTyPtH8c70JwoRFhh$VSjojCdY2Jh6mKZeKI6WDlUS-lR2R93OOQBmkg0dyQPQbnGMqVEwwFdv2Vb7aZ1XjQADpPIvpGTGWqokMLrtA0p2CGK+w+YrvdG8T6tpEVTH4QlVE7D1cFS+n2Exw7sSWRDENmQukXa2WETWOMc+zF1EmAPteKXVF0d$1He02uG-dB4OUS2gpmkk6-32fsE31jaXRzpLTM-ghZFG0k8Bslgl6rGLbaZtqt35mpEPx2Yzw7wlaVngIjHMo-E1u-TJ9p1uI-y8xcxSQzADXZbqFLpIIL8zPbe6l8x3PAqPHxJdh+ISuEG$edEgdwB+v$18hZoadHDZLd$Nm8BvN0yddeZMf7od5wBWDKxT2GCos-pUXIMsV$b7jSSthD$zpt-NQexMcCVgbs8DhcjRO5I2c$35ZeI7HbuLuLwfx2RnEml+Howc3f8nMBGLW-1aMsDqGVwKdv2pwzcgjtj9jPlptlp8YRCwyFEIXlZWTFl-IIkRLZVgBV2BAg5Xo+aWr7awwoI-zKPBdf32$62dunvXHfyBebQgF$MuPA07LmtVHr3NF7oftPs1PckhnpxAfj$tynlxJIx$WOSOoW52nMgBMOgHJKEI$SeelvOzOEDRUyQA8FAwUGReyzyjKxj$rsFRPZSBtaoo6eAHlZmGkfROufEky6rLz2BVysMOEfVCmDN2HEYAQclr8fjR$AE9Pzdg6opCK8x9P-3KXfj8v+EVH0dc8yNZZCO4wv$b6XsH-ZoYemYC5I6AROMZ3vW0$ouUQ9wpnV6cM+RYF1PUXvTSuWZgxUhaxTOXp1vzQOQxlBlMEfFCX6gRoF-OUHmO3JN3w26vpUbeYm563kbO-v4rWKtSEF1O1p6VqtCZdYx1yO$y8hb8Kp9Hecdu7MAW3t8YwFNgo+Y7oOfDLtCoYmkkzdAMpHd41T1YL-GPFNfPxaUye3tmX-kLj5LXVnLKaI5qG0XkQOagxPJk-C7SOFa5$Uee62kAZfdDG7mzSVNZadg5wlMq7xMa4karpeQ9l6gAjrZptHDOB3Db$0J5Pf7rnjSbEHB+DlbfEdQrOV+xcjOGyYJyPCQV26ReNO7X+YOYetGI7arVq-vZJuv2+H-58jabUL5$TAOB0BtpOBzyXT+lG40dOPW7CClRv1yh496ReNKBfnv6RTQepgSCb14z36+HEVjff6UY$2PpQxe4xfsJAc1fU493-CP5I+ZEAQYJLoreGq0eHj88rHyLayCDt4oe3eYAKxRyGup2vqYr3T8gT-zj$1k+Cl3oqSL9PaYYAOreI2ZgHbQtp$cz7ukJqZLURd1tLC56jpuRasWZJasa7w1mmKm$KTIU-sLj$xeN5$4-9S3Xm0VbjbrtdRJly-APo3gHSBT-f56EXqdUM0cMIwgIXaJEq8ynkpS25vwgOSBP8qcddcVSq46oPowoSnspksBf3$RlgZJSNOz9ckL9Dso$jjS5S7Muxg88v3YlbqqwNExNjKJnKG7CeX+$3l0OasUbXgYyp9cnYYS3jP-wpVDq-89xrVfTSmz9Qt6OsChZMDcOuEja+bh5ancj1+$SzMD0FDTGERo3tenDx1RENZrophelS39Ixw0lX03WP6EyEp5hYe3buvd1IvrD+aCVavqBIZWDKzbx48cQ9IWdpPCFbASQx1j31TgW4NYG5ApfkcGvd$oKE$S1kCf6KBHSJalLBvUaUxMBFbknSILGtoc-qgtoqN-QrJAr1L+YmMxENqtqhw27SG9lpYFX6tDDqdA66kcTKDIUuo19wzpMj+L3Px+sVM9khELjUOtqMO9UTaAJkc4-ueY4aDLo855DE8y-IGqSDqtImx+LCTIS99lodH$PDP9+Hmb-CYlNdy4HfM580RNc6k6MXvDfWkDkwUY$yuU32+10q$UKN5Av0NPQRTnvGGkbDGr5-1VuYqbPq$glQrmBkJAQhQtxjCL7xP1jxFMXd7la8OS1RWxjFwBANIH0kE+jKupH6SU+5syQ$LuGaMbJf4K8E78We-GbFvjfGzUSH0FQE5AeyHTa-F5pQYzD7zKKtzURpsjrB5CttputsmVZT5eEjxfvpaUkgWYRjXDu1ORT3yhBbmYwsVMzEnKQ7WB-3wJ-Dc57GmVPW4pcAGq6uh28TtzAQpqSFkW9mxeFA8B8MIVGoSdde1DP4-hxU68cUsj0w2-RMpfRNltXfU1WxrsadYj7EEP2L9MDg67naxVZqxHdZ1D4T9KnCXegooVNEE-$qQq6xmaDpeZ+6muD6Ey8$zr3G99F7r3N6gawpYwooBh8hDjbPzbQN0t+0jqBE1UDmpT8RTRx6e$ogVmT5dkrfzWhjPKaaad0BGFWL6TL6KuYPTEmun2MtsRsADG0NjWLwhcGF4CQmS+3bFft6BW7u+vOeHZVnyITcd9TMlzs5MsV8yzFs$+CjFGpxIN4eT$mr6hpMxbLs+X6+sFNhhWfcx0PyTfejd-IZ5GjmGvfJlQ4uhkWVInAhUYso0p4sLOhZHuqBgnc4HGoHNZHhTQ8k$CK2$k8g489Z$wublscpIdoToo4mS4Np5yQr9Bp4GX1p662M3$4CCZI0I$ot6czjI3ZfyRG6jOAzrLsQ6TsdlBqIJAeBxM4oYwC7R+db-aR8gopjo9mQnIpfRxVB1z44ZlGfYo2hXSw$lby55wZRBF2hlhf-Nz5SINLEm+sFA5GMlr6Sg7YbUx0HNlt8t-aAY+qTYbK6GBXCs3+tsnIxepQ++TJOtQwkw81DgTgLvZgJQgxQBeHggu$khHW-bnI+qFmEspHMRdp79r5EhDts76B$VFPJ46u0UPCRUDzR4JwCzHCebVWP-C2E3eP9PXFn$6E+5qV$6tKT$GCRKf8w3lxYsP7joEZU37z6lfZnIeWyk5A7drMX4-sNM$hlZYlqTTWPgpYGA5PaIgz4N8QS9bNnvnrdjlhyPD2$xSPXszc3eD9TAo-FHvTwsSah2BvVkeu5M06O+vZRlowF4pdmOx7qU$c9RC5F3Lo38hWbQUpzGVlkVKRVpnuPg1bPX4kOu6g8zmtVdzXwotNn2vO0L$plVYya+mbFonlfE2g-2ht4bYJn+80QdYyeGvYob3JmjWu3eSJ8J$kvoXzOvDyM6Yyrq2VmtcKJN2BMpZPLwPx-Z$aZ4atbe79L19Nzg6vEZ12F+h$QYgPsBBo6wOPT7NBHIl+yoLGrN35V2JoqWKwDwjAwYnq7zIjjMR96PC2m7u8aUnXNTyR15dPSyDARKbvCM6CFvg2QNIfRKbG+3r76YOFQE$r91Zg87tLS9H12MFezzDOvru$smr$dz1fEp1JlX3hZr9p9cfzfZxj0RZQWvjIqcYLS0$jeljPwgOQhSZcGV+x8DmRDgT+lD7PEc$+VEsW1oA2p+XBRDWOq7jE$B45kmDWxLR3xQUBM8vCOkW$cF0Oy0GrE-PlD4tK38p2ONfOrOxlXByhcI8oEqUukWYuJds57aS7C39t9+vq-bozG48gcrvzF5vFqhbza3+GaHkAM6t7N0KnnbhaMoGW15vMpxtyAK76OQKWlymLR9HQY0uEZQjNe5um2OJ5xK24kNhkgs7f2j03gtGVrJdLhlM$K4rk6Lmg8TDn45MpVAAFDxXMsqKpGFdzMAtBnEommjtOzyZQeADyyc1eG2HB46styRjlgb7tkFjECKp775VQwRsKjPxN9kWEnmvemhWXbL4xFCkZoQfHc942AoMdeV6F0PS$67K2UKcHxMgDYBFIlZQ8J9x7fbL2uw5OPUp+CYFqY0Ayx9pTNuhKg4FWNW+evj+IhIm8P8nhDfJeqvBUH+j5jLbzjn+ucNDayCg-0czdRs-SbQh$drpVrUE+Zj7rHCHnJ2kO1LJJ53+xbQL4bZ+rU8xYg7Y+Rrx-55n5u3vIyBKKT0SQ6qLN9gCaBZ8LUk9aftHQylW+3Y$rwDIKw5-eK1oCmsSf4wm4orYT$Bg27e9hLfKusWz+$IBBuHV3NLkEv9Xd-9qOGyhO3tz$9TOaRJG+Re-bwBnLnt0EFO3oa-aUML46bVPHDgbr1uWIK5UwleGGp3sYaCQd7WF0msS$UPyXqmpYt3T$3ZyHEMNH3efwTIZxX31oLGrP7L$OFeErM9fY-0+87BIDYfIs+szUoLJ8ch2-M2xTacKToVjHXALHpx538wLHM$NP07J+aG$bUpZghG6eZbqobRFqhDuAhZghDNajqNquh+Bcr4SOVaYyeXXhjTkLLDlzzMMU8MXcjO+Hq7Ur2wJc+gul2KA7mStgRfm0S4uZMeIKUMh3uhyuh6Ov3buJ1Bq2rmnqWbmJVj3fYur6TJuNC$Pg$VRb+LcK7owh$7YYE5BI4JedQhlcICUocbOqcxP07xorr4tGAHqOEzfu0xwLryuQK9SlO4bXBRGv0L$71fsnanQdC6GVMrdH6yAQs-ULMsYI2FvPb+t335zKLSXo9v2kxxDSVG2kn+Vxg8NjUU1jzzlhw0skC1z1KGZNvZ+JrRrBL7M-+B6AQHvjU9c4vT$+rnOsExRt-lDtxUEWCSO$5PYf4-M+EyEYlttoOgGSu9Zxk8SZVz1mhXQumRZIPK7wlQymAm4$KGxYtjBdEcSQQbfYmFBM8+9POTZE99-R1b4yHqUYjsUqF0HSoEF$SBK2ySkoG2Ss76KT5QZ2QNrzEWrE985jfeFAhrlEaEYZ+cjNeG5VIOq1DkScn3stMe7WxHlIUSZOLlKs10nsp9aaapXEXS9QCzOwNVZVEYsBoIZfCfaeeyRRSCI917VtSsd9G4SjmBHhooCWc29eWRe8MZ7Q6g4ymVEX-Eh8VlQH3p0Nm-312wKCm4dhpBj49--8wx3CEX3BrRdA$ckzzSD40Mrw+t5$Yq1Gtlu8XQtaCj3P5zNY8M$caq48EJ1KroDQQrqaNcf9mXTCtO9jsDzRtSDGLxFsfJSs+GDBaAjeESh80B0EMKIBOJpAGScIYE8+IoJymNLBZFb7rqDWmph51SArVdlBYnj1urkBrMn$4HXG983tZDG6HwK7Lbs+9f9vLCZz+aW-ER5CGnjmgZ4Rvp2gXRMRbdgIrl34ejP$$$kVSfu19q8VQ8nMxG7+JrzdO5sYe40UZAXQ2H9hRTSz0Om4Aeof-GePPbQx-mjYuAZVbO$eQG8gacTcFrSndh+ZC5kpYX9zJSvzf3s8gOVONeu+nfCL+58Z9pnFb0xIld1j$PN-vPLZo8AhZ2KbLdEIP3rn9fAcIGRP1GcnJ6nn74thgumzuxknNd1weG2XBrUprbnGONodtqGoGqOeV2316z0JFnp$0YqGx6ImDODf3b6vKJkR5fvt4btllpdKpcoT0SUt-ozL9Jfye6UPVPW$jD05nBpCsMGjGtdh99+BJ7PXZnqxSf1MoqkgobQNXlqwPx1RXfoLIz30fXF2RkmNlgGgw5OSLOAgnZbwNDRV8qFjSswvx5UjnI34I-DX0Bu92+Ixfyu+Q7FHWNc2xNXk1Q63YhRASXuLvZpUjFx4JcqkNwcYgXG933WgLnsAA9hdtJURKTEe9bJZ+K-7cgGkdoz43DGVyOb7lM5drWNtEOYoL-L9bI$xB0Ood-urIsDYxUAk0Spxln$73K5fZtREnMzkvP4CM+l8HYCZmOM0HJ0wg1frlqjS5m9NXt-LlWd-pNS4zuFU8uQRhmt5Dz47rhXCDP9wDpMdR6Om4r-gBuXQlHVkTcZoE$$GjF87Ajuak+OtQURL4aHFxMbDX$tQH4hboK-S0afIgyj0wU$-GzUVEzChO6kBvk0E9lpon4QSDuNuY2kGWuX-cVjHaWS6Lc3oxnsEJd-F2L9dPuodHTzj+eFKRx6PhJK0+MUhUYbw0K5OXLzeU5zrcRN66B9hLfhZ1o-08y4ouOUP+P+$Q1mf-ZDYNO3G6o7SElzvWwEwp20Z7aTwZMD6DcgEE-BBgRLlB-w2ARWIbHkBz0r3vNFXRZHLy4M0tr06emV1uQknpMBYhNpZO-l6OfSLtst0YCLJtMe6RBd$kDgBeG6JGc5BWO9RwzrxWW0vwj8UK4ULKuam0aBVIctOV4IT0w7o5R5uht1LGyvMDDL9e5RTKJ-PR5jrgQg-YoVyDkGCM613J-5pv8QPvtDeqgYkXfEFFlQ5SOVO5$ydWGccJSBe++CseIsgPa+gBaMCIo1JX78n8zfxq0xa3r02-O$GjPjc83y$HUOXrWrzKAky7Gw+9HPoNa1-OAoz05k5opJ2FpsTnRfNPPc6ajg3sUwG3gwFVYTewxGX6DjwD+7bt+UHg77CNwTP1JQpWoZ64z5wDTj34kqNSuk$kHaY5h505ucuknL3MVGD0zM6RSr8GD258c-f7ETfIkCLGz6c-yGg1$7vfzFwnYr7czeV5aRJzMDtxgS7dfXOM9rRC140wsJzYT-L1onlmG8GObhd7jk$DLGmQ3Bnq$HEeqlqRvUtc152eWz5Qern0TKr9e20WL3P3nphk+qN2t65gI9ROmkeIln+0vvRpnGUpAV4oLMSvE0-h4KlJNBnXpdrhe41fDF3I$MNuXIuf6doQOQlGKl5Mau9aCNdaeEzwOQ6vgcl9RTb5HDV+eDARPw4rpMUWIc7UBhN2-t80wamdf8tqpOUn52D2F-7Z$JCnKuOIRYVBzq0rpQA-$c9d+guKvXonIENexfwwO+51S0Y7E3E2bpDZIJ3V+b62RUY9Qw7fos9W9Ta+vG5yVIcZRDGk17lNIMrQD+GJl6TAL6QyeGG4obUtl6OQcMsn5y9W0VE3Y2knlZCR8BPbvmbY3Q+bpGbuIPQf2Mv-hj--UMzWb8efYprxjdC3pjyOVE4PUVfPAB$edPD0DbNR6X$IhgcwK9AZJqN1JVGPQGwD24D1LWZ39ldmJFPcsMDbdYGWYTJeTIyWXWpA9b2uk5Tx$4b1vDzE3n54IJrpGKc+xSshzqmKRypaLQcrPDQu29ZjtQ1LLQG2U7vwa615zaZxwfYmQAJ+mg42KS2a0BcvmjhAZ$fy7FJbC8tjdlAqCQyt++GvVJnaEp-kI1bKUVTcsQckjzhX1Fc+nSBp1Tz7e3NLvs1$VMM3qPskT9XQ4mR4oA6W5+Uw5tRrpJbKkBo9bn009HHXWmG72FKjGKr4ywl8m1GDo0uVr3UaC9oKP4qODxEN9DO-$fSCP5muGQo$$a55fuzDTGYu9aH5CjvISbrzYHTv+OOrUYeXeJM3rBkHN6AGyps3yMFX0cYxYZGXmdPrF+1hUv6eOAeGokrPR0Zk0AI3Kl+r4WDXkxp+bvhUhdCV4Pm$7FrWrSmqmj4gK6HEZegPuDmMYjhQ8n4P4RXwfwA5vx7ShXvHPjgefg4rLWfYsEGX0MxBXOf0Kob20I7maLkwG8CZtuOT5gBc5edqvLxhzje6IAaK9DACD5+QwhEgKKGAClnQwuVrHcxvxIjTmSh3ABa-AS7sh6K84Hc-WWOH+o9Z7j1BYKZ0oEBNL8PlVjXP$$WvkEa9xRZH0fg9LX3wKEhudMV+wHM$sGxSv4KMSzP+FutXBvOKsQ0Vf6YCh7qdT8sKrI3$-97qkzx8B6wq36Y9RZtkCx99gnscbnW2lNpEJL4a4UrMOLaBleVYQy0-pDqNGlMIrWJObVJ+5+YChbLt4uebyFEN-zvTcenf-N3vLkY3Ht72YOSMj+-ArbPOe3OexeBaF5sYU9TKfJIIGWZMuRH9yxabbK7Vz$PS00qFYamazB-SbffnOPMRGlp4UmWMEsjkVcWJMgIrxlxeeVfgUmPQjeJHoIIX6VyU6pNcwDAUnXfcIa$naRcsKcfufbz0aRGfFf3doJx3kS5GQaUDf+Ro9eD$RdQs66aJXbwfQ2zarK$pcqfVBSkkZB2XZhfD7WcLKXbbZCu9Ct+huItQaKVNPE+UQ-0NVKzv5L780gYg-ChrkNRp$Ae87pNr1TsDpsQZHK8MDVKdUu8MSs515kPyUja-$-JMw0ff9SuD5-JY3XBu4E1WgTqaOIUl6BYSKW0dUsT7PWjds3wMjxqZDV8rFl7mXrc4O$kY93JLaeH$Gd63CS71BWXJyP-eYbnR+s7z1IlmJEeBSdnVeBg07xPHd2DACIIuO9aOxl-ts0KsDUmDdLc$eZvUdE4GbtIxMWtog9CVpR9qMKV5b5ReElKVOnWrWJ5+hXmAL185Gp3V6OC0zd9l8JITkyrboXuc36YJeSFCKmT0wDTdE9O0p7G9ljPGHDTuNSDs-yBbhIu-Bn-oIESaYFEheLwq19z5TvEYZX2C-bANcpaVM2ABjCW3cMBsUBX96lQoQcCB7vGr1rTHn6nOVg61zENlBYYHmKcd0MSldr+MG74yEW0uGxk+69GOPSqNWxRPdQX2o+plxQ9mqIqGLL0cUb28nzv8TgkQEPpE8g-f9-6+uFPcQ6vDYnhLoLYMC3KoW4Lg2AUfPh6dvyuR5yZH4WMBXBInN8cZawK4dpaKRBQ8dGe-rEODEkCGb-4nJnVTfPT15$zhYYcZIGlmIcQ0a3h7HwXt1oEJjHI2jaryj4z4ANmZa+kvg3v6NurEH-$r9GgIgNEyVT-kgLnmb9-+InU1atJAMLGtagVLFPUewQ-yspkH9XeC7uJZME2R6tJOMwtpTYSsOvQw6TIzX4oQsCEPhnpXsEcZ3OqEfUB4bTRE6+UZ+9VS8AFmSXLqeQ$rPowzEQQ2zX6Mr1qlKq$XPOoJDndubHoAPYAM6Q-A5rdVM75DLuMoU$QdII-F9-UInDnC9A2aeS1zKefaWPgKY6asB0T4c+pxkxpnJ9LVZg7G+K7$coyTpMMzQKHCCHutzg0ChYyvQrahC7TMAMFZJRGygYhm-48LfT7MbMDavGFE8Nl-LcxEHt24HIM4pnqmm85r0oPdsRCmpnj74xzbJNxhl6$TP9K15IOxOvRtJJvc3AzRQIOgkWd$djIHxj020KwdrJC5ME5LQxkfyJbHbmJuan-5VE5XIaRZmXJTcU2vBZRj3+$fv1$p+x4ypdsCkWgC+lJx$zIuthgbLEhF2q83IevvzU8kQeYV9qWPoPPYWpy9pWFXb-qmfdPeNYhcygd9r9v1-JuQV5In8sAN2xug+ZdoF8X5rtnf05gAYvFb4o18gfBOK+I$ufo7all969zvRTDDSnXcpCyO$KI3IeVylLGajE6ezc$GcdbsrrQ0aTjPhpPwqhDok8XjeG8LvDZ2FCBz-unK-bY7GcGAWl-Mcy4g5w7qF6+9Bt-1rfpNR+7s0o2eR6eyZ4bFjTfH82jSXSKhYUk5UQ3urYr3opjo4gJrmVWLkM6yxZOyM9$5U4h4wotojNtUaq9uU1v+JQ9sGy62Ixj3AoHICoMJwhwvOV3oGJ2JuE-AYQw-NWlNg3vpJvJrc8e9dP4YsuK-WYIwghl4UMxmPyXrFaqkqd3njPoIJNANw33gpO0PcD$3$jrYv8erXMRHXXZBEZXLkk12uaFkCEOAWj4h8DHonMxB3V5d7b0eA-9ZDESU7261yJh7WnsaTHB0fIzX80dNsSOe$-OkJeoWxhX1-9E2Fg92JBMvdFK48cNRlK4kbccvjVzuLw8TJW-ZqhAsMVXdn3ZB8Ew14rmd8w3OVTB2$ZPkQHhXL4A4MdBQNZpUnNFIzVFPW3QMTpymsVb6LPRPICCbAMe14YKHM1f-bV5Vh6oNLYSWonGI1kMOSJkrK49GHYpKJmvXnaYX2nvg1QUnZe2nb7X-4xJG$uOblTzY00KrF2G00HktXmfOOsov8HEuKU6pwjQWLp5Dh9IXgHnoZjl5WMF6HW4R80Kb$5pPXf25ve9ZFaX+E71zcV4S-LTshPOJc1$g$Qqh-EfusBLqw7Hul7Gr7dYKn39ZIUd1eWjCFTOlVU2zHupWvIqpWPSskqqmODvRYMvC3OLZJMRb7cKZ4aaNltNOPkAqMmzahEVWedH6DWmoBdlQ86wU5d5G6Whe1CfBYI110R3+KltJYLMZUWoEpNtxbnkEKT+nMHeCj2mxyR+d4kRB0hhofgkCs5dO$9TnvppUR12nD9hG+WfLAc+eYDJZsG+kKc3fJyyS4th-7gfX8AZIjoZo9GTzTv3wmK0ErKPqcU7zj0DYyGL3SnnCn7IUVb0l+0xL5CId4LDkapmoXtNWd6wRv5AjDeMR9BN5mMll8mlHOOOhQaVSdvLScWlhtvvMvmK3surs6eaxWoODz9oADKKoBD6mKJsh9zsQHApgmVUtzPO6bt$mZwv4p$vCr8V+VmP7gA2NLVNMCX0pzEDrEYkFbPpzRut+dfvV0rQkaQe-C5Lf$2Z9YjcBY9GjZtdCX2yeqz47n-Qndqjg7$XyckNXtrDhNf$2wu848qkngOxb5XLBxpVLnQy-WqydCUkU1P1AZJmtZ6Ilw12RG21g9GV$NZba8NBU4GlbToltNWCrHzfpNH7PF83Cx+dsE+sEn0Hk$ahRny+6HNgwDlapcFOqCG-UQyC98v8NWgt4f-l1rzxZzq-AUnCTJrC85zxWAr68D4g1Whflo0KXbOe+EZm55mb3NVva5ejpjN9+wYgS+gOKnVuY$5XhSX6BPETqZ5WBQ$bwdlMdhS02UT2Cj-rSW4Ry0-I8RT48fjbUUt-1KrfvDzLKzB8xcmwnVjfn53vQjja8PVGOTjmNyuYrUFgg9bPwDXttSh0CaCvLJvaosNBnK3rY6LtFx6renEtleKRSqwQAFv0qAB$S1MdplzI0jrzRLzzQbBLaNYy76w1eJIK+XwaIjf+Gm6quuO4H4F70QUPVI29TCD$z0Hg7xLcGm5v1J7PA72aF+2KKfy13qVsV7XOkUmX5VLJt6VwuhH9yYC48RMxkax56wCIQCFGIWUgrTH7EnBBCyvms$HvAwJKte4bypkspMUTZJaxwH9hK+Z8AbCYsXpCzZjSSs693n8TZYm8O9II3crA2qdqxUvVZyp90X$Thb0VcOA1FSBKyvosMjlLLIIosu8nbYlGZLQlvGCdkoxyPhlNd0Wc0BVk-TaunaR68PQsnDynup1hstRgKXvn74WsgIr6yn3q7fFJm6+ksH$cr5PRJXg4Ox5qGlkTbrrsB4fKOSb5Peo1Edsd2rDTIZ+Ol4UKpUTXkP8N3GmdEacyEdxCtKloc5Z7PJSLOEYqPtr+mENfNPArpvprIsFK5m1Ky3+I-WPV5IkxITSLbkG2n0WqLod6EypkOnlvFDOQMDmt-7Db9xuAr7qzYCB31NOSX4JFeRhvv3X8amVzqaSIovjxv6kEYzYIeeQ8jjcWhreVZs2Bh9XExYGfY3RwMg5hdYd1omLJN$4CY84Fa11UkBJcX7fjYIhrSHD$y2K-9h3jnGpPRFXvEfEWE33MLJ3RHTQRhVbkoynCde6XIsYH8Hyznvrnr0CjW1LTGcCkQ0$WPgVT8l+SyjggAE6vsgVj3UGGzw3euKWWOwlXoXJmynhsHDSFSOEMy1Txu8cjuq42Zk2xsZvYQ3AJqvMg9BDmC+6nUgKGEVlASxCQ4OJb3$tTXSqFhy0JUFp1Vdr974J8ZHwq$01O6-ZFugWfokWTpsSWj5lo2YRB9LX9r8WSht$tPKWLkKpH3$7TnUV5Spd0ggupyoa1nH7MoMFb0TFxf1+qMdR9+-9D41uprzl$ur5ornYcuzM8McDNwbbrhcsdjGR8-4x63Z0zWJz9ddrT$J4S-IX25E6$xnyz7UKUrF5y302yzG-1ASd$nBjOBybtb0d3hc9X2y3k4t4pFf6mI-zbGell-NvdYf2P8RO-r0B4t0DcplkrJLNK0mWIq$C5SlvvjOKgzaZrFUfZO$Zc7a8cPSpaZW++GqE0Xos7NSEJEP2c571$4+$LR5$CdaJ4PInSlONW9PbLp1LhyPSSb8zuhsyfBzDzOvLU5Plc0$HXSXzHLsNw-tH90QxwD+msjY8nHUp-n3QrJzHsT-gc71RjkzI-jZkVUoKzkNzvuQVJQcaa1PAIfKvZT+sBy5-+KYQr2Vajy7y9z5m+TDuAgYKG$NwUocIZ3c$IJCtb7J$y+BM0AVNktWHm7gBjMxeXnTXwgR$BAkWMlHOQcIDg6eA2yx9u3rv7LP8Qqux2GoDamq3vIbGGDqSdh20OrVYF3Nc2pLmdrsp8pkyUPtreNf2U5om+YRGUV8bPAk5tH37lpVFnFx3z$vTLvOaIRSCePbJfe+xvefEJ$51ICEcHYfMnXZB3djRRT3porP9D3GBWXPI4Mc7QYj5JS4h1N77Vw+fw36PQkjZnq6T-pj1Ym5WnvE6Uh5-A9Sltqt+1KqXRMbQOCAzzSoAQw6SJG8vgeHIRvRB31-1J1XRdXSyIb$mgVc5Xq$2dfNZnmPuH51dAZYza0Lmv04Nt6XDsNUobmtPTbpBnx+wyvF6DcMBH$uruRG$nMztnQVhlCzM56uUkrF95Aa+yNWwD9ounVZPPZEFZKnRtlxPNHP$z2GJ9W+HCmTkHQLwtI0XOI--JEGJ-bDV9rA+0xcBYyW2MBnKrRD93bFJrTT8nh$JVcawKYPh0797tw-VKyyBv5Wxe9w00CPyyMPM$2gu6Z5Xj7Chg7etdNELu5Hs6QWBohlxThTnmMa2dVZvsrMl-LrcuWN-VRMHSYCb7zGRrdKXaA99toBXN9jIQyHkUdMH-q3wDJV+TL$497bvtRsdt-QfwgSExfNCvBuUtRbXwAv6g9pe5NxAcGDUF-TrtPdNZx+tSPALd$uoqhQ5Yfsq46vQEcwQ9AXBp2zZmT7V0ZNGk054$cCTpz3WWPavblv1c9qz7NcjrDX$Jg9-SC1fG-0Qgjv9QxSxG1X8KMvYwxF4N+X256Yd2tOzMl5DHgB8PQbq7vuNNWI2K-NvKGg1Au00DkDuFexBkHtp5GOYKmaA0xDzA9ldvEFH$-BkTsecf614DvZBa13x2zsk+2vU7o$Hy4nK+EGAaX8omhPB0-BsKxuv3mo5g7NsMoEWKbnyvLXwSYzBRPyUJnmBnUaGZBCIgffIvP$Y8pFpA$DAhRmZfeNmyoeGLAMJy-c$EMcC9Dm3dcGSUSSWmnaor-x+KJdaAIZo4$F+rMrkbtqaMYjgYBSrwKNhr6EP3VTwfucZGreWPMW2TICL-QZyGChBx7M3jDlLmTZ-ZZkxlyFAb32kc2CtQV40SAjRShBROke5-8mT7zCF2IvKq8-SM1cXXeI5GDb6+8FpIajb00hZ1L3kDpvRK-gOdWh9Ehwmssd5ok8bX33Sfhm0-ogkPTDnF1TFH02pn-sqCqUCjOAedfkUXu-qn3DqwDmp0JSzvCI-pS1f7Me9oAgb4XD78AWHH3awXqFQJ5ZhjkVvpTpYy4o9+mu-UvW4+7l2f0xZFSa7UPRhMsd79doF1BnWM-QTNPfQhuC3JQlUZqcQI9yv1XYjOW9bU+grew50$d7MeaNE-2zXCk1HMMMfZ7K8QLmJ1Zcb-rRdzJzyeU0866-2utqoftEaD$rIaeVez0HkVp+R5WFVg5RTGsnz2LE11ZoHLWledrYp5bOmHPNep7NlEraG4fOlq3CX$AcrXJWQrNI9Nq5ET2ZlWXc3xsbHO4YZ72UXVJQAqbbwaXuOeoDdumZnsPdjdV74SX1N2XYQ+Q$SQtmxBjtq2pVGdyMVYwAl3uvJxxHlC6Itlc23Ax$zuIUQ4eyQFSRnhg4AgbIfeyJDFFBEI6$C5C35IzlnO3Px+Qy3ZpkvKIgArCm5mJ8ko$yormSO7nbz2rDozqT2t4kHRSyhf19+gam6+jROjsxWVhhxKB5M9tnb5wgdk03g+8k77oCcSsIyH9zoFUnFUWJ3GD8KySgQOUuPLUHqvnzqEm+H-nwAAcpB3NYh7fltIw$rSYStzI43GUKoyddcF-UVwDBjFnnFfhRLeg6uLrm$mnQaIm3z2oP+6qgI9ydl+xnNStTLC38dzDcYY1qdVL$otoGc2r8yo6x06f-JVuxLZ$mmRG1fQcznZqeV8WX$mH629bLJ1lw14HUb0cIFUk6b6HNsLbvt1$FGb-xSEbwzRtRr4oSYvZRnoOt9z88rF5ecvey+PAdMmlSp8T1w$$m1nPkQkZQz7$2Lp7X68cvXPO2hY6ozjN-h$vQY4mJq-bp2YYuA-C3zZaAHMBf2QshqKZF9XX88Fd83DHtV6z6xcA-wg-JadY-pBnclMfEmgUEYqefudBkgQ0hqtE1hFpu+Otg0IQaYXjqbEIlKpx2LIBR3uh6-ElYbEwrj3fzLuFHnFT1BrcLDh1TY2mxHNtj-KhCKEtHfIdt99oeEe7p016Q9QfySBKDVpBby6wxpaYyPbFScYeE7WHMQ9TRyA3jjw$eHF518m0ERU1YlRjy51Q6fSK1llS8zDZI8aHwmSnagwojOjg+0U4Mya3oGpv4XpTK+$r6Dt9PC1ESEcksSdsZNNpoqa1-wO+5tgN6GlEgQCIXC9SSMgNNEsBlJGlHcoq7N-rqbY1TzMw8wfKl8EX3681Byh9pftmNQHafexvP-lzQrqAN+bS6b6QRIkXUAue+I8q2$T9bl+1m3IW6Pbj+8M4C$WVR27Lf9vXt-ksofEgE2p8bFuyYjSWmBzd8s1lCvd5fZ4fXEC13nFrSks-ZerrSAykYBYbPvv1jSpb9ERODwRdkaMfwhHadtvBeOtagEpk-JKSa$0hhhYbuHfa57TxOzEVAT7fSnxD610vd4uGnnjgY3TeY3yvnXQdjOFq1nVM-ICSwN2GvHzFdUu0vBxZqZ+JUlKFUXjnI1NW+vKBx7WgqXYT+Nr-1vJMFHaMIp88b12PjOY$00HwC1zjU$4p9chq1g4D1tT1hG$tsPXIj6LAgOcDz094b7BNBOsXOH6AuxD5yrv+asSktx$Sb4aFswa388LOexboKW-KA5SzPjKAfVpoerDrdDKOV$TbHhdQPFIxVK5-rCKlVoM1KrOCO+TFvOOXJ3skGX$htNoSuMPAO8bpz384qoZgndngCZl5qsK0a4XZz0ZIpG$Q1rW-4V7E1H4cEgyECL8fNThfh3-By9Sp3UamxHRKwfYYCpQsyOWfKk34lChSURNRNk$k5knZ1T9SXCwhJ4FZH0AIr2zz3c$yG1nvnyAefKl1kzjF5Y3KkFtodwzrghZz1nqMCj5V8tn6bt$URH26Qp06gf783k4YJV7Vp-3lyVuQnR71azJsKI0tPb$NVgAAJotaGRrKH4qjvxzfQ+Y3czh9XDvvfE82SjEJZaegB6mcXnfQE9u71gKZfHenk92E3hHQvdpb4Kwt+UPaqDaQd9OUmpoPCzVmnFOnTNhoV2BJw2HyGhBoPJxSdIt2+tVXJaFNl5MK6KdnGn590CLBovIc7noe5S8$kz1Wyk4A4LIx+khrb3xHX4eZ+KnF78p3qKHWNw0SBgn+zCu98wEhPSVOkXZoDe5A$ovUYouwyj7M2gLkv2l+47$87bc2AmFH87-PnWOF4krfpVZPay$oyA4bKv-llYKFK2FXqb7kA+2HCWuwonInCvcJ76q85veH8s85LMrLRCx-OwYTHmUvSR1HEfcEJgLN$M+xsyXmAAHDJDqUUwtQdqSJqbwWx+5yXN78JwtAreE7JoH2yQpe-Es5cSR8uOBnS8lBQh9cVhTtdF8dPQ4TGpI1TDSrZAcOmpxC-gAVyzX6t+de2Fz4fs95ZXL0b0DXALRzR+1OJSYXLoUW6tnOXbNf-I5r9zy7qMGwh9eyxq+nb$NMy7h3PThxOeVAC2xO0csaIomfLWocpt$-5XcqaNGJlKaHCaLUmIPr$RlLLM4hq73vum8HeZegbREmSC1pkX1RZZ5qbDZd5oq0r+v7HHyLSVqp+NZAsNxC8ksW8OWYYRla+XJq4Hz064QVOa4l7$BdsNl+ZDrXObYhUdwAU4SCpJ9D8yTPqpefzln4x-fMQHuX2TuyK-cDuvbOfNtZgoJuVAkV-Zekxqm--1IKAbTvDEPRJNDGIYmNq5qvMrQWbJP1t1+b+T2$X$PDUKv+LYvBzJpyVvJhj93tqT-COUetjDtp6O6MMHJ0TBFaFOLgDrYZfa+v1gDjG-tdru--ccsL47LuBegMQanK5ZtGR3VPV9S8bdkjIZdDazwpvu8u0OWP1s-W$0t8bdozAvVDz80128dhT0Ob3$WYJxcSKwJJdttQ1E$rCVPl1X38YZOQEJ7z08XpI6A2Sx7mS6RcZI9GJgOA-WYOcv0YjW$XYX7e02G89fUae0VaqMogc7FXKfYmSz2uluD15vlJgloE3R7Y24EDq6z79DsnBIXN5ta01yshFabeEJvOPuTnL++XKt9jTw93J$BORZpTlWf3FYZ40qTSB7+Tlh4fG92EWRnTN0vWlNd4ytwy3lSp4oPTqboFjU6l8lhrQpZacXyMg8KPR82E7$vIf$hgh0whJFGDNmRHo$cqSH-AAMnAownpuaTn-fa7euA4TsTtg5WXcEh9FDuZO+FmEF4FNRDlyVkMaLKgw-6F4Jcru3fVWmNjKGFvbAAWRhq69bkhlooqxQ7-KA+QzjYAgDhbzw+OaQAGkAzLL-XNWLQMa6ZjAFLIR1cxswI2fTT+PL619aLRD2wGkATQL-D8rkSpwcKocCEfY-zf4zCuthrpQXoNpO6YFr8gZbVxpjpldD7kp2NAyTGh6t8ZjorBjxo+0oo5HgJ74sqpMA1oTn67tR23trEvP1VYeC9SCuHp9VcNFC+CB3BXEdhszg+hz-6pqcO15cCNbG9EowVRRA04QpGHvopvEheb3FojppL$Su8FM3h8vt$NzoEMEK0w3QG+zWkgpG7hz4M3dvvN2pdgPXANQk+ztjlk3LJCNha0YMRfeVIZKMr+dBugSyCxpBPLBcefLrJkLL+HuLwAyF1CpekotNNW$-ge8hrUZCzS2h7MNGDLzW7WSYOLS4W3G508uklxfWfz8oJ-NjZ9uqYh8hcKoVbj$K$Lqyf$$-4$V0CJ+yjox94YpVsqYEcM$J90Pbpeu+VUmJ12-b8HIVWAYP05yYZ8VGVc$3DCkdEolPyLXDlU5vdHexeHRANnJ-PAN1pP5a4eJslQggL9IMyt-kGGvHR7wUYr8juzcWouzBOofv2$taDw8QAR7mOkcrc7xE-Fn50gJR3n53+hYTM69UlQmhSmbJvLADf48ZmBBjDA4KzMekcHx0Cd3ewVO$Rq3aq4doQtkvtelRqIOLEeNbCeBEAcMSf0z-z31peOwORfyBnSG3syJ7eRRI2$9fFc2ksp9pk8FpfxnKwpj8t2-GMOBALwQg4mzwTRXEs9xW9MSVeXl8qJNryDcVfAx8dkR+0uQRw0pYbBIqTEr1tDABP2VA4QRXLosHz9QQrfbZWc2KvXd7B3FKjDR1g7wogb73FAPPq6EHgQLhS+6D6B-YCkLHp0vc4MJZaMYDGgHa3xNn52WaWQfvVLZHa$wcR0qgCJNUEfAafaO19H+Z2lp$Apk0owX-+sCvRMhUogFm3wnz35qZ0CLpnd+hYVkYShKJ+Sx8G-A-hKXb19DZLQu9IBE$Ulv3Jz68$4aMp5hqrgfoNbJu1XVUIH+2-J8BLgZ2YaBKVxCRqeWxvxfw7hT7K7VCFt-TBv8pgnuYG9KvrAOV$aOYJq+obL1D3YqylrIwUHAOmqD6FWHeFUufp6GwDdDkBt5v6zdHQ3e3MW71OAJ80QX61LA6Ctaq3Q5$ohg7a+4LwPklEnTtgxkvDg7a4jPIaG3lpgVHt5mmr15e-PQy9r39yNm24+g4UfatX66291jYlmDvyfKTw2YtV5KMeDUn6rqvx9OI7R4yYL7D2oMKvnwomIjnh0uj51Vyvahph$0KSV2ld6JVmeEoRoFP8tGdI0mjq4ya9QkkfTrAIz$csMOwFOjx6n3LkqNYKzowIDJOw8cSC1H-ooMnokA8fBeQ2Xec+AdGDSqfIB2vDWMmGo5zCyNhGIS$rtSqJmZ$MO$cG6yaZzWI$esxF5hTABewp5sw4U78CcZmd3PpWHx63JxchBvfcXbo3kYncLWRlQpnok2FVZ3bw-9xIgeqgpAWaILhXoANwtWmpnv3X$dbCnPtWpqQNxoM8c2k8+se1gm5uGH7QnqohRz+T+sV5Tn99WrZOATruNZ9bSO$IVa8$N6I3qALWTmKbrsbWvze-FrRSO9j+ZSrC$5ftjDBhP6krejPo55gVRJIcvVh31F8pRSLU6DuC05BOZrqHgMhej2Wsxn8QsfsA$-vpnRKoEwH19cQfhQFl3LOUH$sCvUI76-FlzE1fdsbCE-wzngrE1DoB6TzjH$w-0acGoxHe7t$-pGPX$J8Lj7Jxdd8BKWeMvYzw7A$MuI8uXtAd2Jo5UglSHqKPaJEv$wB8-HR9wqyjj9HCkFTNy-ClFE2o$gXNv6ySSfGuT-x7cQBI5JPf22TKNLXRHVgm5RvhUI25hDStf0+1su7xZqUjEsILTv991A9oFDayyjUS95gnFj-BsQsDMW6OsMpWK9sHSB+DcmC4nBVq4$TQeycvKx1E1rEsONUtXAy0pWmuypShSfZlzPn+Ya3sOa5QUNGjgOqlnsRzcuB$z5nzFaBhOAgCYrWpgjq9fokQtpVu$OfH61T5HLomFdale2G3fpR2eJ-8gS+J+6snwn6Uz4U+H666rtqgoVd-JvZVDKShlQHy+ECjuBk0cFOgjHn-yeHw1PymMJMqCxALU$mk$ZwCXqE-aM1-FdHt0WOXRWxFcH7aZVSHs$swPzY3zshFrOQ6rganqyKRDynIsTAEAtRB7rKvDU8kjLhrrQBkrHp69c0mY3q27yNFW8GYCxjyyqcASadmRS6MoyfsmSTUL4NQZP+W$+EoHRf8Gjjwvmx2-ZkVuJqm1dW0svXnEBdB2LB03TtYqtO1ymxA6Ua3QLMzI+5VHL9Ywn3tpYvEpUfnygrohD4G7Au7+l4UCySQIO2DAfsPIee6DV8uR97jkU5huHkPL435ffsA56QD5PkgEBrVARvtez0GMGoPQuL8MlNyaU86I$qT2EFt6e2Ab1AaB6L9VgIo0GXvA8P$a2qqlvTSbYLfTUjm9$5y1HBtQ7nb-+wHAO784BpymqHw8usn8V5ZGgPmFhnNNFB8NcZhMrEpWcbBjNX3Z8Y35PIFOP20gBV6WmCs6jX5qtBT+IqyqBLC18FncHy2hPBckxl2Cy1CC9JVQ+VXjqVl2VLWdQvwOv3Jl7GKE$QCr$KujwPumSmj87l+9jE4E82NXXu7cN$p4nuv8sgdnbg+LFhyR63$EqhVo3XCPShNNtLETv9-mac+kAlySnjKlFh1q8aVMbhDqAThaYT7OBZ56XlQj5O4syK+vDdw7DwfBO8zzYIraQ5lEthwRYccGALGa3CG30DECyelvyPAQOBKXVQhQ0o4glKE1DCwNg+6gULZ5OBHzsnpS5nltMy-zEUAMPj5RX+Sy9CVFdwJVFvsjcZMxchC4uZcD7hTKqDduUm+Vn8RQpq+Yav+EWIzJstLKfhjfF+jhrYTIBH70yZTvrNThg1Znud1IhUSz93LGOZ5lPqZt$JaR1pjo4-mgUF+pcO$u+wAEletQ25DWhyPABQLMQZdckPrO37anEwqqEzVk+RbfWMxgxmgAxL62bz1e0KCXOXjrEu3l9dU5IdHGOoZDVjvu$c8K0RNNOYd2W6HEpFJVloofCQMv7AgqQvkearouI0oL$8hE78C9WDUOdc-nKkh2gT2B8BCmkKXFW2MZpRoTpa2m0bgOA9qMyZIhRIC+9Z26S76O$k1wZ1vCn+rZvOTs6JDgCOkBsp+rCeUpLqOTkZ9trpjI0Y-pLdIJWH193TBH$0-gt2aAbS44mDs0QCnttXVyIyW6CWRT8TYzQSytthdAb8shP+rTr5b2+XQdYCbNnPQl9B8NT8wtMtkoYM-bvCO4pwzgqCUIZQoWaQyU-J4Zvut8wL6SNGCRMoq2Y17a+7ouBa8CtxHLE2F9OHJy6b3h0BIcKoyw1KbkTDHA1bUSEhcOCAcE+mMKRSJAzUplCIuZIDOoGm$tNAF-5vQAwb48BHqFf8-rlYbqPcsvMq0+SdAh9zr2RVQUEZB$-bqpZYzWACRIeN9VDDKeZfyFKRaR4NUNkVyKkqKMwnIVrw$OuOcIXsor9fjqWT4gYo72CRLsxzqEsRVU$VcxmNSblPPzI54gZB8oJfAEeJHOfOgtdN-sQYmydyHnp8LSo6jd4NMhnTPXTUIhhynrw8WsB$8yyBP0mVbNSy++vCvbe2-VfSIW26kltsIh9xT4tGFUe7dT1RmDg0mrBIYcqJrvVfRwQHstupV9+QmhDCVyj3pvW7Smpnmf+0EoqIUj8kJqtGzaK0s--+DVba-LB9Lvqylw2kchrvLoEXGx0BpZN+lvHN4ngJV69dvxx-wTxv4uLn$bgjhg7SQKAIqS-1eaOVCdoSkqmYfoca6gyq$YJ-87LueeZCVp4FxJJ-RfT48Ls20+OjQejUV6sxcX9jWEsVxNpcw0O6KxYdHr+l8EGC-AsZ+utYrzcbWz2MOj2zPnhKYsnatPaKHat0sOyE7$Sx99CExI4OtdakwBQw+xv3DpGpMeY2X+r+TJ9JKHmAAURZ+AM$qSVt3czHdu4MVk4e39uyvHlSRTLyorjWY3$UegT9ZXXCSbveglFTvzkULDYma-UynTgYETX9yxxu0+QC467A8vztZSadVRq6QQqDYdrvvJpLzmYeHmDsl3epJ36apoeuqP$PXg8xsh$LY5Uqn7NC5-J4T62Fk$syfLGyX-nbvNyvHGez8KwE5JD4+aUP8Xs+Ok-MfGcZ5LR93RO48a7LJakdX3nCpU4e2gvPE2KPfckuzEng84CyRRkqqROA+yUoytQ4lvWrWxwkOnEmUk5tGmXUnt2Ej4QWr1QoZBQBJ3KvmItjljoEKMMlOAn1+yEpEGoejrlzH05s0D$mUN--y-dTrS3G83v+6QFEzmhacdpEkTdtfHgHRqFsaFgvHhsBstmrh97QWDSgDdjpWtbrno-stn4h9Peorquvm0N6z-xL+CQsfzMhxbCH9+uSfXzpThDNDZEeyZjuoDGppLJ9UZrYr3srJzKBGtVXGm84Qy9ZH0tvbXZ2J1R+D1KBPtzQdb-q9OrK+s+m6k0YYMH6C4kH5rmvVqGRU2+qDYj-TM5b8s7XnBXwRpDbHvKELLFU9rEkIhngEbSFQc6lDAv$EpTzD3bfmXCuq9gT9rCEPMKnBX42EONrrR6+SEAUIR2AY03PdrpuK7a397-$x6GnQuta1$vmDe88P6SBomf38ojGtK29y+na+E11H8DrvWg8vpTjKDyk$LwKc$4Sb5$tn$0q$ty$JTuC8f7VAsheSF4zQgjZYTttvHgjEYY3utW-9jbxE5EuMebwArjcUy-$tkNUnv0Q12b4kA5BQJdQMXFrtoXsemmVdAQun3y01f45EPY0Vc24nAm8F$8TbR5wHFrYHbGo9WW0Kr-xSPZTMQkT5G33kh9pG20jlMh5W$PyZlO9KCOaQAeRoEOtRQeKlEXzhE0R1SVHcoA1zBQP5-qPxfqVYUlOQ2CYezuJ58B8rDRN6+hm91wrpk1K+efAAoTpI2a7jl2yuGEEh59sUwO-8TKpxzKAxzdd97hWcEHMlarYZu8AaS1Y29WcBP2H2pEfyvYbWpbAMKv4YEyZAdcCoIqE5keKIKW1UBM8cP8EFPGD5gIf6dj7nlkpVA7X3X+0Edb12UVAKfJv9yZJH8SFVUbamA7r1tekalvMWxHMkTJ59M0d6FL5TeWhYPypjxqlodvEeAzmIPKKLpkkgkJ0OPkZEpY7Lh+Ws2CsLVue8pN6Urm--nVE6hmnYTVw5B$DZ+McIMVRfyx$lNBXH37D4LBQWuPaA86bYPobP8KVYIBwHtQJ8ma1jC3BTYemBrSVc5z40xTMnXypykkOQ2NPTsweFzSP-$f-QHn1QDdpCkoDRWLVAsCCqUcZ7NPxW$9XUfrMDwT+XzyOfIpSDJ1hlBIQd3nY27nJrcFHHCrK4NjPc4UabsOaKarfQIXD69thVTU+8$-XxwoVHDFV9zhQrhAN1jTANv5oWnVYtCCC-o0KX4JM-yIe9BW9$W80fLQvDEn0n3BdxO4B9Km-+lu45PORMaBgn6KCblfeYMDOI1fP8nQIV5ynP6Cq2vZ7Oo7cG2dIHkRZFJMtomakseSEJGeqD$PHTl+X3D-HjHeVROVxeF$B4fB8FpVKC8D-quxjbYu2x47nbqIp13tEp1FkhbNx9BvjsN2-Jv4QGQR6K4s5N+wSzccwjUqFrqD9FQs0pICsI6bCGppJD53zYwdVs41XHxZ$KjW26l2-09H951G0djcQdcafk-pgHeOPFVIRULNpu0-Vo3eZYx-W2l-qK27QaWNV9511zWjmapW+LLsewzfg46MTH5x5L6Bk2f9mMBef-o--lNouPE$EMfxHZ9tuUcUIwNeGlyg9q4J8oEGw5byUh$EcWCUkJfD+IRz4ort83GpKtZvuEELm9F5PLUb7bb1nS6Wlzy+W4Lcz3rda5RCbkds9rl-VRuj57FD0vM4nny$0lDu8wMwlIJlhrweDxz$-MKC13gwcfKDuowoBygbx5kKZlh1mBwTw4wGSunNYLUSp6Xo61EGuwkmRcK+4VzhJ0$+qwrT9gkOymJ-p7lzAl7tVnk9MNbSlX9RT9T7OJzfFzl9GB8H5ZGvTTHXZtawIIDhUkLYIT5$RIjyFUR3y8-TOCn+Xfwz3hxQgJRv0j4GkRPCr6ME2aYVUVqTCgyzzaIjMF3z1mVTPJ0TXImETb2863wwIvAH-2tdrrDHwraVoVNxIlabUAgbExz60j97nRvjKxGwj3AbQGMP0$m5GEnpZDX3"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 29 Apr 2026 15:23:42 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: YvkA0jJ4uPFpOcaFIEKRzi0M7sCkz1YJsmWsPHk5VEU=$WHj6AqKc6d+l52LFaUJODw==\r\ntiming-allow-origin: https://challenges.cloudflare.com\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f3f4f37eaf78deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30680,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (30680), with no line terminators","md5":"850bf4d3b24c97233d8e36d8ee9f9240","sha1":"147d841d6ad107ee3012b306fa1f676ab0766aa6","sha256":"00de9de79d1d85a620f6ffbf101f0ae3dfc49ea3656194cfdaeea84ca9b34cba","sha512":"120488277b0188b08427f0bdbf4c6d09ef23d51d90300963097ad0d394bb8aefcdc122e4e4f8783d1806d50ba0d5289fdabbe5b56718cd343cf9d8bc9742fb0b","ssdeep":"768:gXF4kM46lDOzUTIbwQGL537Bt7IsaGVQFeHkUsXJn:gFykbTo5rBRIsaGOUHk9Zn","tlshash":"16d2f1b7fbaae1d074c40e4218f44ee04cbcbdddec94ba118b4d9691c78ca46e871898","first_seen":"2026-04-29T15:24:31.292501Z","last_seen":"2026-04-29T15:24:31.292501Z","times_seen":1,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"l7srv.su/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d","fqdn":"l7srv.su","domain":"l7srv.su","tld":"su"},"ip":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://l7srv.su/","date":"2026-04-29T15:23:38.205Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d HTTP/1.1\r\nHost: l7srv.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 29 Apr 2026 15:23:38 GMT\r\nContent-Type: application/javascript; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nContent-Encoding: gzip\r\nServer: cloudflare\r\nCF-RAY: 9f3f4f1bdb5c8deb-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":195750,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"84c1f772afd507546c0e5a54b782306c","sha1":"fb3c30a58829990f352387219b838f01c794f82c","sha256":"b02bf0e20225e9216c515f8d18eb809390209cecd84aec7f71b1261e52722a33","sha512":"63d80ec336950573a47146e81a1bb1b4c446acc0b4a474e612ea99da85bbaa08a5279b5dec4fefb66c709ef2526253752cb4967b9fecbf5fc4e09026f370007c","ssdeep":"3072:Mnv/COeRgSfb9wEEVP/OsOhfhRdylWvEZHwrh9rEVKQiUs7BL6:4v/COeRgSRwEs/OsO1hRkQv+QrfEcr/Q","tlshash":"a514f98d36d9b1550373b0b8512b31ebb7fb2d44340c2999d62689e0fca935c6bb3d68","first_seen":"2026-04-29T15:24:31.293274Z","last_seen":"2026-04-29T15:24:31.293274Z","times_seen":1,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":1,"dns":1,"connect":1,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-29T15:23:38Z","timestamp":1777476218,"ip_dst":{"addr":"172.67.75.115","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.4","port":37692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related","source":"{\"timestamp\":\"2026-04-29T15:23:38.217431+0000\",\"flow_id\":1080552073076903,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":37692,\"dest_ip\":\"172.67.75.115\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2014170,\"rev\":6,\"signature\":\"ET POLICY HTTP Request to .su TLD (Soviet Union) Often Malware Related\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2012_01_31\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"http\":{\"hostname\":\"l7srv.su\",\"url\":\"/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9f3f4f1b1f23b51d\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"application/javascript\",\"http_refer\":\"http://l7srv.su/?__cf_chl_rt_tk=QaMJTIANsdf9_SEaavdoYQaYUHEmC28g6KLPgtjBaxc-1777476218-1.0.1.1-B0HwQNlc6xcLIP6DTR5Jqvuy4HQnkeshpkoQaHD1KLg\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1087},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":777,\"bytes_toclient\":4682,\"start\":\"2026-04-29T15:23:38.204967+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-29","alert":"Sinkholed","trigger":"l7srv.su","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}