{"report_id":"1e7cdac1-e3ce-458f-86e3-5ce87feabbbd","version":6,"status":"done","tags":[],"date":"2025-05-11T06:04:59Z","url":{"schema":"http","addr":"www.god55m7.com/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55m7.com","domain":"god55m7.com","tld":"com"},"ip":{"addr":"104.21.32.1","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"title":"god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-20T06:04:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www.god55.asia","ip":{"addr":"172.67.212.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-09-04","domain_rank":0,"first_seen":"2025-03-16T09:06:32.497503Z","last_seen":"2025-05-10T09:35:53.687587Z","alert_count":3,"request_count":5,"received_data":77059,"sent_data":3105,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.ipify.org","ip":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-01-05","domain_rank":3267,"first_seen":"2014-10-06T12:38:43Z","last_seen":"2025-05-07T19:19:06.994888Z","alert_count":0,"request_count":2,"received_data":965,"sent_data":882,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.god55m7.com","ip":{"addr":"104.21.32.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-04-15","domain_rank":0,"first_seen":"2023-02-07T18:02:34Z","last_seen":"2025-04-08T09:07:04.421072Z","alert_count":0,"request_count":1,"received_data":8482,"sent_data":540,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ipapi.co","ip":{"addr":"172.67.69.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":195030,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2025-05-04T03:18:51.08186Z","alert_count":0,"request_count":2,"received_data":3436,"sent_data":884,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":55266,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI","source":"{\"timestamp\":\"2025-05-11T06:04:38.953707+0000\",\"flow_id\":595431683158688,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":55266,\"dest_ip\":\"104.26.12.205\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2047703,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_08_22\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2023_08_22\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"External_IP_Lookup\"],\"updated_at\":[\"2023_08_22\"]}},\"tls\":{\"sni\":\"api.ipify.org\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":915,\"bytes_toclient\":3514,\"start\":\"2025-05-11T06:04:38.946848+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.74.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":54324,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI","source":"{\"timestamp\":\"2025-05-11T06:04:38.971472+0000\",\"flow_id\":567153618498696,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":54324,\"dest_ip\":\"172.67.74.152\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2047703,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_08_22\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2023_08_22\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"External_IP_Lookup\"],\"updated_at\":[\"2023_08_22\"]}},\"tls\":{\"sni\":\"api.ipify.org\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":915,\"bytes_toclient\":3514,\"start\":\"2025-05-11T06:04:38.963720+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"b5f3d74b0ffbcacffb07c7d6da9c1c3d","sha1":"2bb0bee04f5bc5d225dd7db594bdca0da5b58280","sha256":"0633c9bd1276ba3c9389bf6cbeb0e3cb8843feb832aba6c1fbe01d93d1ab6e68","sha512":"249a261c89df7707c83b507b1bf32ad768c6df00c0f97ded104e9671fcc6eb8818deed0d9a849a467027fdabea851ec2215e4a02651a94a7086f8deb4144ad67","ssdeep":"","tlshash":"0641f1fb1362a18057c4123219af32057154a1db6f657de03ece86643fec76cc276b9a","size":2133,"data":"","first_seen":"2025-03-07T04:34:11.820471Z","last_seen":"2026-05-16T08:38:51.432761Z","times_seen":304,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7aa837631edc7ec9a096d724d44cae05","sha1":"6aaef0f9e51517082125c603bd7eb402aef26c88","sha256":"d8857d1f9f9e1d83632a4094e57394b4fdd973a32d6f8605d16940a44fec309f","sha512":"55a0384d870fe8528b8f49bac13c3fa9fd95e216989833ba83418ec019ccb2e668e01f7e22a4d2ba6bca6cc35b151c641aa56964c1689fa736949ab86f92dd13","ssdeep":"","tlshash":"0551389d28f340d0eeb7b2fa739f865828354003345ac938bbcd86518fa1564c67f9d8","size":3001,"data":"","first_seen":"2025-03-07T04:34:11.821899Z","last_seen":"2026-05-16T08:38:51.434683Z","times_seen":304,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"}],"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ipapi.co/91.90.42.154/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"172.67.69.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:39.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 27 Apr 2025 01:39:42 GMT","end":"Sat, 26 Jul 2025 02:39:37 GMT"},"fingerprint":{"sha1":"E8:73:1B:99:98:12:30:B0:43:37:41:B7:A6:D7:09:A5:E8:31:78:8B","sha256":"A2:AF:99:6E:54:10:82:C9:ED:8C:78:89:FD:EE:34:F0:CB:F3:2A:44:BA:37:7C:02:BA:94:FD:7C:1E:37:B8:C1"}}},"request":{"raw":"GET /91.90.42.154/json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.god55.asia\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":38,"data":"v=0.1\u0026m=login\u0026f=get_status\u0026language=us"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 May 2025 06:04:39 GMT\r\ncontent-type: application/json\r\nallow: POST, OPTIONS, OPTIONS, HEAD, GET\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://www.god55.asia\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=XZ6UBzbfSGGRpcsAI90JZfleQ5S6ZmZn8ZvTfxBRufxCKsBMcDM0rDbzUVXwnr3%2BUKypJbpTD3DMgN%2BeqoLxnAdgIjRGFMU14VsGJ%2B3gX2yPW9%2Bitz3bQukB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 93df7ae90fbd0afe-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=1008\u0026min_rtt=476\u0026rtt_var=1086\u0026sent=10\u0026recv=12\u0026lost=0\u0026retrans=1\u0026sent_bytes=3281\u0026recv_bytes=1347\u0026delivery_rate=6830188\u0026cwnd=256\u0026unsent_bytes=0\u0026cid=0308753ebd3f6e37\u0026ts=254\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":744,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"66804cb82bfd98ed6ffac294652d8318","sha1":"da6ec4a3f79a6b1f7285816cc423aa84b44146cc","sha256":"c5c013659ac783923b22e00a18300a247e95b61acac383126882515dcd4ebfd0","sha512":"5d79434d4ee02dcdb99443007f9aab1ed39c37a0059b96276f8ba127b60acfdd0ab5e10b99671bf74babadaa7d91a5c4ec660db22a36bc889d814c340c57e229","ssdeep":"","tlshash":"9501df68e4680ebb9cb9135cb4786a07123462075e56398e7fd09b4d0f8e9bf31b534e","first_seen":"2025-04-28T07:34:30.39119Z","last_seen":"2025-05-25T03:13:42.211125Z","times_seen":556,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":31,"dns":6,"connect":1,"send":0,"wait":232,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55.asia/favicon.ico","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:39.753Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"god55.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 28 Apr 2025 03:43:14 GMT","end":"Sun, 27 Jul 2025 04:43:06 GMT"},"fingerprint":{"sha1":"83:14:BD:45:FE:35:4E:27:AC:FB:4D:3A:38:06:25:BC:13:C1:83:90","sha256":"9D:BC:A4:B8:26:F7:88:69:BD:20:11:2C:C4:8A:35:6C:B0:88:E3:6F:DC:94:AF:A5:90:72:0E:DD:78:9E:47:89"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.god55.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\r\nCookie: __cf_bm=cIaeG4kie5orIVAcHQB5_tOolsQ0bil2DumLszkS7ck-1746943477-1.0.1.1-nw4lPhYZnsLKeWgFrMun5eYgmGuPvK6Iq_r2y8wUy3mGZRMrZdKfYfXIEzdjAjPXE.rNK_g7ecmWKXr1synt586C7oXE.PMYaY97vvA5D7Q\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":767,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,null,null,null,null,null,[1,0]]],373,[[\"1746943426349\",null,null,null,null,null,null,\"[1,40400,30,null,\\\"754734757.0\\\",\\\"wT0gaNiCKs-7kvQP_piQiAs\\\",null,null,null,\\\"no\\\",\\\"NOR\\\",0,7,1112,null,0,0,null,\\\"og-4720a08f-e4a3-4173-885a-3ee9e96afe1c\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,0,null,null,null,0,null,[2,5,\\\"ug\\\",112],null,null,0,0,1]\",null,null,null,null,null,null,0,[null,null,null,\"[]\"],null,null,null,null,1]],\"1746943427350\",null,null,null,null,null,null,null,null,null,null,null,null,null,[[null,[null,null,null,null,null,null,null,null,null,null,null,null,122505695]],9]]"}},"response":{"raw":"HTTP/3 451 Unavailable For Legal Reasons\r\ndate: Sun, 11 May 2025 06:04:40 GMT\r\ncontent-type: text/html\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=KUoCLsE5ZWQOu7uD0funSLNpvTxZqXspKMq2exM8wxp6xFH%2Fz0UfN5W3JJga2OWJrCKHAaP0VNzwL8GLU0U9%2FL%2BhBcpJ57kcUyTmiPWQ97cIs1fGw2%2BdIM10y3SxO9icMw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\ncf-ray: 93df7aec7a97b4eb-OSL\r\nvary: Accept-Encoding\r\ncf-cache-status: BYPASS\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=2904\u0026min_rtt=552\u0026rtt_var=1434\u0026sent=258\u0026recv=310\u0026lost=0\u0026retrans=0\u0026sent_bytes=57906\u0026recv_bytes=17507\u0026delivery_rate=754903\u0026cwnd=48000\u0026unsent_bytes=0\u0026cid=d152b853634b9730\u0026ts=2613\u0026x=16\"\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":null,"data":{"size":7905,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"22f3a9e9f8d0b71d5fc84aae1a83bc0c","sha1":"676eb15ff371319c80c2cf3b18e72a94efa79ac2","sha256":"08d8ec107c134634301730f7c8719e03573663e8b477d526fd511811badb91b5","sha512":"154abee67527036e567a81bdf210d086e81219a2976937fdf0b8f9c67244302ef50e55002014c9c2f5c1669f8f9eabb59d7de53b9ee965c7d50b7f04a6adeccb","ssdeep":"192:NAVsZtTb58pHykvFkwKM1y+3C3qrYZWTps7+nIyfCZRo6V3n:osZtGpSkNk3/ERAo6VX","tlshash":"f5f100ee28f341c0a9f762aa27afb30475304007755eddf87acd82504fe5568c67ba89","first_seen":"2025-04-08T09:07:05.234659Z","last_seen":"2026-05-16T08:38:51.430811Z","times_seen":246,"resource_available":true,"data":null}},"time_used":838,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":837,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-11T06:04:38.153Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90 HTTP/1.1\r\nHost: www.god55.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":769,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,null,null,null,null,null,[1,0,2]]],373,[[\"1746943426349\",null,null,null,null,null,null,\"[1,40400,30,null,\\\"754734757.0\\\",\\\"wT0gaNiCKs-7kvQP_piQiAs\\\",null,null,null,\\\"no\\\",\\\"NOR\\\",0,7,1112,null,0,0,null,\\\"og-4720a08f-e4a3-4173-885a-3ee9e96afe1c\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,0,null,null,null,0,null,[2,5,\\\"ug\\\",112],null,null,0,0,1]\",null,null,null,null,null,null,0,[null,null,null,\"[]\"],null,null,null,null,1]],\"1746943433793\",null,null,null,null,null,null,null,null,null,null,null,null,null,[[null,[null,null,null,null,null,null,null,null,null,null,null,null,122505695]],9]]"}},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sun, 11 May 2025 06:04:38 GMT\r\nContent-Type: text/html\r\nContent-Length: 167\r\nConnection: keep-alive\r\nCache-Control: max-age=3600\r\nExpires: Sun, 11 May 2025 07:04:38 GMT\r\nLocation: https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=WcmIHAknMz1qR%2BVDAy63baGx3VcIBYpSmj%2F3qaK2CIKKsNhGykodeuWIfQNmXoulE2flJqFRDCVpKklZ8O4L0zgr39%2Bc6K1zrKRVNQHx8%2F9Lm6mXyL%2FJyxUthXAbOPi4hg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nNEL: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nVary: Accept-Encoding\r\nServer: cloudflare\r\nCF-RAY: 93df7ae26b4b56aa-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=439\u0026min_rtt=439\u0026rtt_var=219\u0026sent=1\u0026recv=3\u0026lost=0\u0026retrans=0\u0026sent_bytes=0\u0026recv_bytes=455\u0026delivery_rate=0\u0026cwnd=249\u0026unsent_bytes=0\u0026cid=0000000000000000\u0026ts=0\u0026x=0\"\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":7905,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-16T22:14:49.392477Z","times_seen":15300628,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55.asia/images/restricted-character-light.png","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:38.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"god55.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 28 Apr 2025 03:43:14 GMT","end":"Sun, 27 Jul 2025 04:43:06 GMT"},"fingerprint":{"sha1":"83:14:BD:45:FE:35:4E:27:AC:FB:4D:3A:38:06:25:BC:13:C1:83:90","sha256":"9D:BC:A4:B8:26:F7:88:69:BD:20:11:2C:C4:8A:35:6C:B0:88:E3:6F:DC:94:AF:A5:90:72:0E:DD:78:9E:47:89"}}},"request":{"raw":"GET /images/restricted-character-light.png HTTP/1.1\r\nHost: www.god55.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\r\nCookie: __cf_bm=cIaeG4kie5orIVAcHQB5_tOolsQ0bil2DumLszkS7ck-1746943477-1.0.1.1-nw4lPhYZnsLKeWgFrMun5eYgmGuPvK6Iq_r2y8wUy3mGZRMrZdKfYfXIEzdjAjPXE.rNK_g7ecmWKXr1synt586C7oXE.PMYaY97vvA5D7Q\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":543,"data":"{\"subscribe_owner_stream_uuid\":\"00000000-0000-0000-0000-000000000000\",\"stream_uuid\":\"00000000-0000-0000-0000-000000000000\",\"surfer_uuid\":\"48e4a35e-b4e1-428b-b0ba-702f752c0edf\",\"visit_uuid\":\"49becf05-234e-4a9c-be30-affa1e39c72a\",\"is_first_visit\":true,\"is_unique_surfer\":true,\"is_unique_surfer_by_stream\":true,\"page_type_id\":1,\"pre_referrer\":\"http://versifgodwswat.com/\",\"domain_id\":8219,\"showcase_theme_id\":10,\"page_request_uuid\":\"aa4faeb8-9825-77b1-eb52-78569541622b\",\"experiment\":\"\",\"experiment_variant\":\"\",\"ban_reason\":\"empty_redirect_hash\"}"}},"response":{"raw":"HTTP/3 451 Unavailable For Legal Reasons\r\ndate: Sun, 11 May 2025 06:04:40 GMT\r\ncontent-type: image/png\r\ncontent-length: 41032\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=RCe4wrc2UQjrjQ6zIacEFdw0zd04pjoBsfI%2F0%2BPd%2BfjWhPZC7A2%2FeAmHjIW%2ByoKtSskKvbL6QcUo1ixY0DaYF9CTKrTA9ef%2F2F%2FM%2BQhAIZugAKCfLzYg5KxJhWq5DAVX7A%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\netag: \"681daa7b-a048\"\r\ncf-cache-status: BYPASS\r\ncf-ray: 93df7ae76a09b4eb-OSL\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=2743\u0026min_rtt=552\u0026rtt_var=1827\u0026sent=222\u0026recv=307\u0026lost=0\u0026retrans=0\u0026sent_bytes=15220\u0026recv_bytes=17371\u0026delivery_rate=2072\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=d152b853634b9730\u0026ts=2032\u0026x=16\"\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":null,"data":{"size":41032,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 301 x 334, 8-bit/color RGBA, non-interlaced","md5":"8d7f265709037d6ea4e7a2b58fbaeac5","sha1":"8fa28724e754ca133f251ad76f615c395d93159c","sha256":"22b96f9f72001438be11a9a98c842cd8d12395f046ec38208037be1ef313743c","sha512":"221294377a1178e8090eb28be20c21670349d78a8ed9b3fc66d5ad0dbab02acbee2e9f52404124d5b1df89bdf58cfcc140743f2317fce7f24ae881f877579953","ssdeep":"768:vqH0goiEssXyuokP13c4dq+AJ8hSSW2CanNeaW4gM15/:vqKsNuokBrdq+q8hfCaEass/","tlshash":"b803f18e92db549f388e526d83093ef7180231fb393be0cbfca17549995482d66257b2","first_seen":"2024-10-15T12:22:27.478488Z","last_seen":"2026-05-16T08:38:51.43143Z","times_seen":302,"resource_available":false,"data":null}},"time_used":1083,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1072,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.ipify.org/?format=json","fqdn":"api.ipify.org","domain":"ipify.org","tld":"org"},"ip":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:38.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipify.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 09 May 2025 18:38:00 GMT","end":"Thu, 07 Aug 2025 19:37:58 GMT"},"fingerprint":{"sha1":"B6:43:2D:30:3C:0D:E5:13:B7:32:8A:28:4E:69:95:BC:C6:20:DD:F9","sha256":"98:F0:0F:09:F0:AF:77:9E:8C:58:D0:07:71:57:CD:EC:18:65:C4:C5:A3:6C:AE:BD:6F:2D:5E:8B:30:70:F6:CB"}}},"request":{"raw":"GET /?format=json HTTP/1.1\r\nHost: api.ipify.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.god55.asia\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 May 2025 06:04:39 GMT\r\ncontent-type: application/json\r\ncontent-length: 21\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 93df7ae799cb56a5-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=757\u0026min_rtt=514\u0026rtt_var=491\u0026sent=8\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3269\u0026recv_bytes=1291\u0026delivery_rate=5376237\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=2b3a2bfb569468ca\u0026ts=144\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7d69c71af0f191e9a72db6153f8018d1","sha1":"f67c5f2887bc05654b47f76e9621e53a4091aed1","sha256":"5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65","sha512":"fdf43a8f3d843fe9008949d6709c8e2a5cd640f6101522319745f0a829f21dc8f4bd4d70ff3e2f6e1fd53ca0d2dd872bf3588c593a403071102ab28763cbdba5","ssdeep":"","tlshash":"b8700022000000208c80800eca0a032223a0000ac20a00088e800b2288a0b380282032","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-05-16T22:06:58.228983Z","times_seen":90353,"resource_available":true,"data":null}},"time_used":181,"timings":{"blocked":25,"dns":5,"connect":2,"send":0,"wait":125,"receive":1,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/91.90.42.154/json/","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"172.67.69.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:39.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 27 Apr 2025 01:39:42 GMT","end":"Sat, 26 Jul 2025 02:39:37 GMT"},"fingerprint":{"sha1":"E8:73:1B:99:98:12:30:B0:43:37:41:B7:A6:D7:09:A5:E8:31:78:8B","sha256":"A2:AF:99:6E:54:10:82:C9:ED:8C:78:89:FD:EE:34:F0:CB:F3:2A:44:BA:37:7C:02:BA:94:FD:7C:1E:37:B8:C1"}}},"request":{"raw":"GET /91.90.42.154/json/ HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.god55.asia\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":2116,"data":"version=v3\u0026e-recaptcha=\u0026g_token=03AFcWeA7Yb-lBJ1k3n0m0GcTvxs4nW9_sZnSkp4DY8XzNoUktff-2tWYspgTWKS61iK2p_6LNM2XmWXkS5uo84ILxy3e1eJw_Nhn4aNctZe18P2dHj7PssVfL2GQlM9ncLrnOD_f7WYhSLDWwG6Rr3_iyteTOdDmLsExUeYJZ_2pKuY7pWJ0EN2i5WQRuXYaI3vDIIJJ6_tPxO8Y1ELlSIzp_Kpd3od3IlRcBM4xvh2D21EzvLz4ggbIKYHQr6vffNxNCHprm64uzn3_f5fmto-NEwGcL7tP4mL905GzGlkLUDn9a1k3sMGhMSDeCdu9fiLUjOgvwPoSiR3moIT9z3sRQq2ZsPxBb0bEM4NxFE710_R3azJTmLY6HNcRiLwHK2bqX0nBB5_WNUexObk5aCYzdbrusqMsnSKL7QnFP7syRS2_rWFRiqccH471vGiigdAQfC4BNQSD6ulc_0wDGwhMp3qwneDuNG2_CKnw3ykRMB3x9Z3VudLthlOEdWGO1TFk4Yh_50dOP4abZq4cjwFDW4OMrfKAwo4aO4u9KZzqgIyeASSki0sICnF8TNNHebMm0chcPG8ZCpHjNmFXMxtvyNdLfgv3-3eDvPIEsKLzcEf15VkF_TLLTmPV7ueOQ47WjRAQIFNyWRMki1zUC6qXut04EWM0qOXpNN7UnKOAFhQwssDd9EWxfDyPDWo9htmrLQg1P2N1ZsR2_QMkmL55TnKwmN-oQFsLHCblp8eUfv1D3jsa-Xrg7nPCpUna3mYIMPE_9YzTaxKVxu1GpUoIM9H5vASkChpfZw3uHduphYzQ0O_9xFDGmIBQrlOjryK_XgjONfEfsAJ2C0fGED5SO5f7ppALJ4qNcO_S0oiFf1CsGDcl8ga56ES5ACVGiiBOEr1xMdpfAfdqxMVVozFli69TXI0Vuj0jC2NWfEpeX4AdJBtnIKXBMHnPrtHq16RZIyy09UE22Y0ivyCNJFK9AZs_7ykpwsoeq-bUqZYl6eiEY4se47gtw1zDGxpBeHKYcfYvehmL-cz-Uc-CrK6NiTdLRrHh8H8-KRNuLF7qDopRnNOBuvatZM7PSbdPM7Ua951I-fbvkw3xGJ4IO_T7NGzgRwspJT1NvcG0KOqo_J9xO7DAFMffi6V_JaQKmwKB7iv1G-kqy8-kkIofzKwnz6WGOmfPhfzVpjAL9y0UBOJLLcV4cTD5PaUjXfNuHKQMnDvqJiQqWRpzgkdzKBAvvTC_Hj26ep-_PlQcZ-Ji78qvq4nDRMQrK3-Ah8erGzEiLPYrDN_TOuRVkt3_yTYsdre9dVSPSry7BURcXyQtWFpMQPrquzSvlaM1g9yxe6gIRDKgKU2AqnU98twSQ1Ps7AXKaoq2z7HMKRH0-8PZ2rfvS_VxaOAeJPusz3vlfHqIPfnz25fUeKOECYp4DyfH8FysgtF_ucIQ8YYw07OfvBmJs0gKGKXiwHcJ4Pe0VWsRTnNzqO4hsSnBzXwUKvne2NW0TMAwxkSuEbaBBCpEKJGelDLCHm8N9wa7JE9j9FrCBhGgpvz13KB-L7pQmDppb3XdskLWnGxuO0oIq9nwCumiQ9m0ltwV436hwk07e1BD50WB3ljrf3Z6gc11YpN8uyn9sqj4xtvsEvmhhh8tKYX73cTFHD7YQIyZ5EVo8u5ReZDFG4mx24CgHcHvdgbbwNoYKi3TdMsFSts29g8lWe2VyorykBS760ZQFzhl7O0kLI0Bp9U64v7ABXKxgQXEZ9Ttkiq7RmQJk4iEv4HLs8sc7NxjjTKZmgNCptNSUz0Xnc_UzbNDBLpXsx4tKnTe7lDI6RAA4J-WBwpoMuNXXKKiwKygHiOgf-pfF1YNUw0qcgQmlk267tVvbwgEKgAhrbAasiJf23s_yg6gfbtpLxaZdAacL-ilYW-AZS656teJot_a5fhha7UJjowCcQvQ4IAoYvzz4UfQzNlU47ph8bVwK3LbeR3h5RL1PZMic2mXmzcdAaddBeLaZpL2_9mLmr-jsTkYSb2zO0TmUtPQx74bcdnKMCCjnHAFBj1mx2CkR2ppZbcg9W178mOpt6kStausetCFdoQ"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 May 2025 06:04:39 GMT\r\ncontent-type: application/json\r\nallow: POST, GET, OPTIONS, HEAD, OPTIONS\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://www.god55.asia\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=08uijEZOMhAqSW97vskDH%2BgYNIXE8r753U%2Ftn%2F040c7VDVvpwt77A6kbIkqTXAITUId2NwbCeQLrsSToIOMzpmWrXXvxe9RJ9l76L72wFAw4NXqEzkrUgajZ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 93df7ae90fbe0afe-OSL\r\ncontent-encoding: br\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=1116\u0026min_rtt=476\u0026rtt_var=1031\u0026sent=13\u0026recv=13\u0026lost=0\u0026retrans=1\u0026sent_bytes=4429\u0026recv_bytes=1347\u0026delivery_rate=6830188\u0026cwnd=256\u0026unsent_bytes=0\u0026cid=0308753ebd3f6e37\u0026ts=445\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":744,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"66804cb82bfd98ed6ffac294652d8318","sha1":"da6ec4a3f79a6b1f7285816cc423aa84b44146cc","sha256":"c5c013659ac783923b22e00a18300a247e95b61acac383126882515dcd4ebfd0","sha512":"5d79434d4ee02dcdb99443007f9aab1ed39c37a0059b96276f8ba127b60acfdd0ab5e10b99671bf74babadaa7d91a5c4ec660db22a36bc889d814c340c57e229","ssdeep":"","tlshash":"9501df68e4680ebb9cb9135cb4786a07123462075e56398e7fd09b4d0f8e9bf31b534e","first_seen":"2025-04-28T07:34:30.39119Z","last_seen":"2025-05-25T03:13:42.211125Z","times_seen":556,"resource_available":false,"data":null}},"time_used":483,"timings":{"blocked":29,"dns":5,"connect":3,"send":0,"wait":422,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55m7.com/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55m7.com","domain":"god55m7.com","tld":"com"},"ip":{"addr":"104.21.32.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-11T06:04:37.579Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"god55m7.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Apr 2025 13:01:33 GMT","end":"Sat, 19 Jul 2025 14:00:19 GMT"},"fingerprint":{"sha1":"54:A7:52:74:5B:2C:9D:F8:13:F9:C6:9B:07:CE:0E:1B:CB:EC:DA:74","sha256":"CA:00:4E:D1:02:04:9A:9A:FD:B9:87:EC:DF:6C:74:2B:6E:C8:D0:A9:B6:B0:A0:D6:0B:4D:29:ED:74:FF:BE:70"}}},"request":{"raw":"GET /km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90 HTTP/1.1\r\nHost: www.god55m7.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":769,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,null,null,null,null,null,[1,0,3]]],373,[[\"1746943426349\",null,null,null,null,null,null,\"[1,40400,30,null,\\\"754734757.0\\\",\\\"wT0gaNiCKs-7kvQP_piQiAs\\\",null,null,null,\\\"no\\\",\\\"NOR\\\",0,7,1112,null,0,0,null,\\\"og-4720a08f-e4a3-4173-885a-3ee9e96afe1c\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,0,null,null,null,0,null,[2,5,\\\"ug\\\",112],null,null,0,0,1]\",null,null,null,null,null,null,0,[null,null,null,\"[]\"],null,null,null,null,1]],\"1746943441919\",null,null,null,null,null,null,null,null,null,null,null,null,null,[[null,[null,null,null,null,null,null,null,null,null,null,null,null,122505695]],9]]"}},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Sun, 11 May 2025 06:04:37 GMT\r\nlocation: https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=t2TIrhdcolOA1AvqDw9RJos9PNTSpPeM61IuX05Nc8sWQECTAcaNHGc0OrqgxQUYAdjaeLAJf42S4bvkPeQZldtXLquP1IDhPKG4wPhXpPSgz4HUet3LMX6u9KcX0Kj6A10%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 93df7adefe840b31-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":7905,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-16T22:14:49.392477Z","times_seen":15300628,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":21,"dns":1,"connect":1,"send":0,"wait":28,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-11T06:04:37.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"god55.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 28 Apr 2025 03:43:14 GMT","end":"Sun, 27 Jul 2025 04:43:06 GMT"},"fingerprint":{"sha1":"83:14:BD:45:FE:35:4E:27:AC:FB:4D:3A:38:06:25:BC:13:C1:83:90","sha256":"9D:BC:A4:B8:26:F7:88:69:BD:20:11:2C:C4:8A:35:6C:B0:88:E3:6F:DC:94:AF:A5:90:72:0E:DD:78:9E:47:89"}}},"request":{"raw":"GET /km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90 HTTP/1.1\r\nHost: www.god55.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":769,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,null,null,null,null,null,[1,0,2]]],373,[[\"1746943435999\",null,null,null,null,null,null,\"[1,40400,30,null,\\\"754734757.0\\\",\\\"yz0gaLuIE4jekvQP48e5kA8\\\",null,null,null,\\\"no\\\",\\\"NOR\\\",0,7,1549,null,0,0,null,\\\"og-2ba8d7f9-1dcf-4609-b9fc-f80b2132c2fa\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,0,null,null,null,0,null,[2,5,\\\"ug\\\",154],null,null,0,0,1]\",null,null,null,null,null,null,0,[null,null,null,\"[]\"],null,null,null,null,1]],\"1746943443234\",null,null,null,null,null,null,null,null,null,null,null,null,null,[[null,[null,null,null,null,null,null,null,null,null,null,null,null,122505695]],9]]"}},"response":{"raw":"HTTP/2 451 Unavailable For Legal Reasons\r\ndate: Sun, 11 May 2025 06:04:37 GMT\r\ncontent-type: text/html\r\ncf-cache-status: DYNAMIC\r\nset-cookie: __cf_bm=cIaeG4kie5orIVAcHQB5_tOolsQ0bil2DumLszkS7ck-1746943477-1.0.1.1-nw4lPhYZnsLKeWgFrMun5eYgmGuPvK6Iq_r2y8wUy3mGZRMrZdKfYfXIEzdjAjPXE.rNK_g7ecmWKXr1synt586C7oXE.PMYaY97vvA5D7Q; path=/; expires=Sun, 11-May-25 06:34:37 GMT; domain=.god55.asia; HttpOnly; Secure; SameSite=None\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=M6y8pkGpqHd25KO83GpUstMTYD%2Bu0CfgqLszCgsEFgEAKpKEOhYQlxcCuO%2FlhQBFhEN%2BU1s0Peb0Gds4mU8Vz4u73yiIES05uLjb4RJ%2Fs6JtLc0psboERQhLbaDqP9jW0g%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 93df7adf8935712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=5518\u0026min_rtt=449\u0026rtt_var=10141\u0026sent=8\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3272\u0026recv_bytes=1294\u0026delivery_rate=7798922\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=49fec0033626fb13\u0026ts=309\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":null,"data":{"size":7905,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"22f3a9e9f8d0b71d5fc84aae1a83bc0c","sha1":"676eb15ff371319c80c2cf3b18e72a94efa79ac2","sha256":"08d8ec107c134634301730f7c8719e03573663e8b477d526fd511811badb91b5","sha512":"154abee67527036e567a81bdf210d086e81219a2976937fdf0b8f9c67244302ef50e55002014c9c2f5c1669f8f9eabb59d7de53b9ee965c7d50b7f04a6adeccb","ssdeep":"192:NAVsZtTb58pHykvFkwKM1y+3C3qrYZWTps7+nIyfCZRo6V3n:osZtGpSkNk3/ERAo6VX","tlshash":"f5f100ee28f341c0a9f762aa27afb30475304007755eddf87acd82504fe5568c67ba89","first_seen":"2025-04-08T09:07:05.234659Z","last_seen":"2026-05-16T08:38:51.430811Z","times_seen":246,"resource_available":true,"data":null}},"time_used":391,"timings":{"blocked":53,"dns":22,"connect":1,"send":0,"wait":284,"receive":0,"ssl":25},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","fqdn":"www.god55.asia","domain":"god55.asia","tld":"asia"},"ip":{"addr":"172.67.212.202","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-05-11T06:04:38.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"god55.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 28 Apr 2025 03:43:14 GMT","end":"Sun, 27 Jul 2025 04:43:06 GMT"},"fingerprint":{"sha1":"83:14:BD:45:FE:35:4E:27:AC:FB:4D:3A:38:06:25:BC:13:C1:83:90","sha256":"9D:BC:A4:B8:26:F7:88:69:BD:20:11:2C:C4:8A:35:6C:B0:88:E3:6F:DC:94:AF:A5:90:72:0E:DD:78:9E:47:89"}}},"request":{"raw":"GET /km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90 HTTP/1.1\r\nHost: www.god55.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __cf_bm=cIaeG4kie5orIVAcHQB5_tOolsQ0bil2DumLszkS7ck-1746943477-1.0.1.1-nw4lPhYZnsLKeWgFrMun5eYgmGuPvK6Iq_r2y8wUy3mGZRMrZdKfYfXIEzdjAjPXE.rNK_g7ecmWKXr1synt586C7oXE.PMYaY97vvA5D7Q\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":176,"data":"{\"device\":\"desktop\",\"page\":1,\"filter\":{\"categories\":{\"identifiers\":[\"top:undefined\"],\"strategy\":\"OR\"},\"providers\":[]},\"sort\":{\"direction\":\"ASC\",\"type\":\"global\"},\"page_size\":50}"}},"response":{"raw":"HTTP/2 451 Unavailable For Legal Reasons\r\ndate: Sun, 11 May 2025 06:04:38 GMT\r\ncontent-type: text/html\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=sHGZLfHIrkQuQmMqp3CHodv8vqNinf3FDqrSmiquhDsRRI8fCR5tZh2skFaA%2BXc5jZ%2F%2FTf3U9ZmjCOTwaNFDbCMEQ%2BH7%2BHrXRqzPewSzsOotrftpWeA2cPeHFrTzKh32hQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 93df7ae2ad64712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=2247\u0026min_rtt=449\u0026rtt_var=3441\u0026sent=17\u0026recv=20\u0026lost=0\u0026retrans=0\u0026sent_bytes=12148\u0026recv_bytes=1545\u0026delivery_rate=13906362\u0026cwnd=257\u0026unsent_bytes=0\u0026cid=49fec0033626fb13\u0026ts=1121\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":null,"data":{"size":7905,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"22f3a9e9f8d0b71d5fc84aae1a83bc0c","sha1":"676eb15ff371319c80c2cf3b18e72a94efa79ac2","sha256":"08d8ec107c134634301730f7c8719e03573663e8b477d526fd511811badb91b5","sha512":"154abee67527036e567a81bdf210d086e81219a2976937fdf0b8f9c67244302ef50e55002014c9c2f5c1669f8f9eabb59d7de53b9ee965c7d50b7f04a6adeccb","ssdeep":"192:NAVsZtTb58pHykvFkwKM1y+3C3qrYZWTps7+nIyfCZRo6V3n:osZtGpSkNk3/ERAo6VX","tlshash":"f5f100ee28f341c0a9f762aa27afb30475304007755eddf87acd82504fe5568c67ba89","first_seen":"2025-04-08T09:07:05.234659Z","last_seen":"2026-05-16T08:38:51.430811Z","times_seen":246,"resource_available":true,"data":null}},"time_used":597,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":597,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-05-11T06:04:38Z","timestamp":1746943478,"ip_dst":{"addr":"172.67.212.202","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.22","port":38738,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.asia domain","source":"{\"timestamp\":\"2025-05-11T06:04:38.172373+0000\",\"flow_id\":1595871300302540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.22\",\"src_port\":38738,\"dest_ip\":\"172.67.212.202\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032986,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.asia domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"www.god55.asia\",\"url\":\"/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":727,\"bytes_toclient\":1305,\"start\":\"2025-05-11T06:04:38.145100+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.ipify.org/?format=json","fqdn":"api.ipify.org","domain":"ipify.org","tld":"org"},"ip":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://www.god55.asia/km-kh/register?affid=1538\u0026subid=wsiabqli8rk9iuo9j2qmqo90","date":"2025-05-11T06:04:38.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipify.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 09 May 2025 18:38:00 GMT","end":"Thu, 07 Aug 2025 19:37:58 GMT"},"fingerprint":{"sha1":"B6:43:2D:30:3C:0D:E5:13:B7:32:8A:28:4E:69:95:BC:C6:20:DD:F9","sha256":"98:F0:0F:09:F0:AF:77:9E:8C:58:D0:07:71:57:CD:EC:18:65:C4:C5:A3:6C:AE:BD:6F:2D:5E:8B:30:70:F6:CB"}}},"request":{"raw":"GET /?format=json HTTP/1.1\r\nHost: api.ipify.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.god55.asia\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.god55.asia/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":353,"data":"{\"dt\":300,\"e\":[{\"dt\":0,\"f\":{\"_brandId\":\"wix\",\"_ms\":959,\"appName\":\"classic-error-pages-statics\",\"corrId\":\"58768c69-c3a9-4734-9789-6c0ec53339ee\",\"is_rollout\":false,\"src\":72,\"evid\":11,\"session_id\":\"9a320b6f-8378-46d0-a0a0-9950291696c4\",\"_\":1746943348584,\"duration\":921,\"frd\":37,\"_isca\":1,\"_iscf\":1,\"_ispd\":0,\"_ise\":1,\"_rp\":\"fed\"}}],\"g\":{\"_lv\":\"2.0.985|C\"}}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 11 May 2025 06:04:39 GMT\r\ncontent-type: application/json\r\ncontent-length: 21\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 93df7ae7b9fb56a5-OSL\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=821\u0026min_rtt=514\u0026rtt_var=495\u0026sent=11\u0026recv=12\u0026lost=0\u0026retrans=0\u0026sent_bytes=3648\u0026recv_bytes=1291\u0026delivery_rate=5376237\u0026cwnd=257\u0026unsent_bytes=0\u0026cid=2b3a2bfb569468ca\u0026ts=162\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":21,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7d69c71af0f191e9a72db6153f8018d1","sha1":"f67c5f2887bc05654b47f76e9621e53a4091aed1","sha256":"5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65","sha512":"fdf43a8f3d843fe9008949d6709c8e2a5cd640f6101522319745f0a829f21dc8f4bd4d70ff3e2f6e1fd53ca0d2dd872bf3588c593a403071102ab28763cbdba5","ssdeep":"","tlshash":"b8700022000000208c80800eca0a032223a0000ac20a00088e800b2288a0b380282032","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-05-16T22:06:58.228983Z","times_seen":90353,"resource_available":true,"data":null}},"time_used":204,"timings":{"blocked":43,"dns":5,"connect":1,"send":0,"wait":120,"receive":1,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}