{"report_id":"4286558a-61dc-4ced-8d63-135de56cffa8","version":6,"status":"done","tags":[],"date":"2025-12-04T18:48:30Z","url":{"schema":"http","addr":"t97166.boldwin.live","fqdn":"t97166.boldwin.live","domain":"boldwin.live","tld":"live"},"ip":{"addr":"173.208.97.166","port":0,"asn":396362,"as":"LEASEWEB-USA-NYC","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"t97166.boldwin.live/","fqdn":"t97166.boldwin.live","domain":"boldwin.live","tld":"live"},"title":"t97166.boldwin.live/","dom":{"size":126,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"0bff8a1de44082b7c7a4fa7de52bd216","sha1":"00505ea42383938585e23efbb3617dd34f0b250e","sha256":"d5708ffc68d0cc1248e8c9d25a7520af6676bff3243223a138272d10eb866497","sha512":"ebed20b6c562d1a8bbffae8a339b463cf95c61b6b730f87f4aeaf133c5f72646987f56b4ee4286f16fdf14f7cc14825ae1db062803c29c5464de4e88c52029fa","ssdeep":"","tlshash":"cbb092bb6505191bf6247ac6ec822228aa845008e12a8c25b7821668c1d52ad859aa95","dom_hash":"domhashc1fec9cafeadbac0b33c1409ff211c3f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"t97166.boldwin.live","fqdn":"t97166.boldwin.live","domain":"boldwin.live","tld":"live"},"ip":{"addr":"173.208.97.166","port":0,"asn":396362,"as":"LEASEWEB-USA-NYC","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-08T18:48:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"t97166.boldwin.live","ip":{"addr":"173.208.97.166","port":443,"asn":396362,"as":"LEASEWEB-USA-NYC","country":"United States","country_code":"US"},"domain_registered":"2023-10-19","domain_rank":958633,"first_seen":"2025-05-20T21:10:38.763353Z","last_seen":"2025-12-04T18:46:23.590201Z","alert_count":0,"request_count":2,"received_data":250,"sent_data":933,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"t97166.boldwin.live/","fqdn":"t97166.boldwin.live","domain":"boldwin.live","tld":"live"},"ip":{"addr":"173.208.97.166","port":443,"asn":396362,"as":"LEASEWEB-USA-NYC","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-04T18:48:07.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.boldwin.live","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2023","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 19 Dec 2024 14:39:10 GMT","end":"Tue, 20 Jan 2026 14:39:09 GMT"},"fingerprint":{"sha1":"18:64:91:AF:BA:AD:14:7D:49:85:05:F6:E9:95:80:62:8A:95:3E:BE","sha256":"D4:33:BD:CA:01:96:CF:11:CF:D4:39:25:0A:CE:46:F3:3C:CC:10:41:17:5E:9C:A5:A0:11:EA:59:BF:8C:E5:D1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: t97166.boldwin.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 04 Dec 2025 18:48:08 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-04-05T09:46:07.824083Z","times_seen":391281,"resource_available":true,"data":null}},"time_used":640,"timings":{"blocked":271,"dns":1,"connect":87,"send":0,"wait":97,"receive":1,"ssl":181},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t97166.boldwin.live/favicon.ico","fqdn":"t97166.boldwin.live","domain":"boldwin.live","tld":"live"},"ip":{"addr":"173.208.97.166","port":443,"asn":396362,"as":"LEASEWEB-USA-NYC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://t97166.boldwin.live/","date":"2025-12-04T18:48:08.420Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.boldwin.live","organization":""},"issuer":{"commonName":"GlobalSign GCC R6 AlphaSSL CA 2023","organization":"GlobalSign nv-sa"},"validity":{"start":"Thu, 19 Dec 2024 14:39:10 GMT","end":"Tue, 20 Jan 2026 14:39:09 GMT"},"fingerprint":{"sha1":"18:64:91:AF:BA:AD:14:7D:49:85:05:F6:E9:95:80:62:8A:95:3E:BE","sha256":"D4:33:BD:CA:01:96:CF:11:CF:D4:39:25:0A:CE:46:F3:3C:CC:10:41:17:5E:9C:A5:A0:11:EA:59:BF:8C:E5:D1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: t97166.boldwin.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://t97166.boldwin.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 04 Dec 2025 18:48:08 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2,"size_decoded":0,"mime_type":"image/x-icon","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-04-05T09:46:07.824083Z","times_seen":391281,"resource_available":true,"data":null}},"time_used":130,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":130,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}