{"report_id":"559d9ee9-56d3-4ee8-8b6d-fbbee1744159","version":6,"status":"done","tags":[],"date":"2026-03-25T15:45:32Z","url":{"schema":"http","addr":"zooma-amp432.online","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":0,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"zooma-amp432.online/","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"title":"Сайт заблокирован","dom":{"size":21743,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (16350)","md5":"e9ba8c65ee1738579268b6f5d1e8c438","sha1":"65d0e7dd5365699551569d3742815c44f8633048","sha256":"415d6fdad1634e97614339cc406036d6050190e69278032dc43822e10324c2e9","sha512":"c8771a5183f5d76c9ca227ae86d23f065c8d832cadc11ccdd4d56e144613d6aa28b390a9736369b5f7f00c6647d6678e201f0fbf6a74b481ff55694cb7220c25","ssdeep":"384:tayQhbX0whjEFCfbo1c7rWgqF2P+Ddf+Q6UhYQuXjRagWSYlQsZ+aesfVXOe5Sl:tayQhbX0whjEFCfcG7rWgqF2P+Ddf+QI","tlshash":"a7a2b62266e524afb227c071f890636db0218053b6237bbaf87dba789f470955d33349","dom_hash":"domhashb86b33686f648b8d6902cd8117c01363","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"zooma-amp432.online","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":0,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-29T15:45:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"zooma-amp432.online","ip":{"addr":"185.4.66.132","port":443,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"domain_registered":"2026-03-25","domain_rank":0,"first_seen":"2026-03-25T15:45:32.950871Z","last_seen":"2026-03-25T15:45:32.950871Z","alert_count":0,"request_count":4,"received_data":101684,"sent_data":1829,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"zooma-amp432.online/","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":443,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-25T15:45:11.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.zooma-amp432.online","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Mar 2026 06:07:46 GMT","end":"Tue, 23 Jun 2026 06:07:45 GMT"},"fingerprint":{"sha1":"23:E4:30:49:B9:EE:73:01:39:E8:A7:39:05:83:61:0D:74:3B:23:09","sha256":"B8:D1:85:0F:BB:08:7F:66:50:E5:3F:96:7F:90:EF:89:28:4E:20:B2:BD:BA:41:23:C0:99:CA:5D:EA:C4:FE:D8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: zooma-amp432.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Wed, 25 Mar 2026 15:45:11 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000;\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":21759,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (16350)","md5":"eee9e748cd23a8fd5d56d80ad7d601f4","sha1":"9ca765685ab59504ad19a531f2f5d36e30698ca3","sha256":"801f05e1766dc773b1799b45676f689d6afa141ad824aa10a4d0439f98cc3015","sha512":"28d714b465daaed22e9b38523d87279cc43274b638fb7629374f83152d2cecd54c98d1d1bd6b4bda595e2534d393083df24a0a218231ce3d365c6dfe384163ac","ssdeep":"384:tayQhbX0whjEFCfbo1c7rWgqF2P+Ddf+Q6UhYQuXjRagWSYlQsZ+aesfVXOe5Sz:tayQhbX0whjEFCfcG7rWgqF2P+Ddf+Qm","tlshash":"eea2b62266e524afb227c071f890636db0218053b6237bbaf87dba78df470955d33349","first_seen":"2026-03-25T15:45:37.721718Z","last_seen":"2026-03-25T23:39:17.334672Z","times_seen":2,"resource_available":true,"data":null}},"time_used":351,"timings":{"blocked":140,"dns":30,"connect":48,"send":0,"wait":70,"receive":1,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zooma-amp432.online/img/ulogo.svg","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":443,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://zooma-amp432.online/","date":"2026-03-25T15:45:11.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.zooma-amp432.online","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Mar 2026 06:07:46 GMT","end":"Tue, 23 Jun 2026 06:07:45 GMT"},"fingerprint":{"sha1":"23:E4:30:49:B9:EE:73:01:39:E8:A7:39:05:83:61:0D:74:3B:23:09","sha256":"B8:D1:85:0F:BB:08:7F:66:50:E5:3F:96:7F:90:EF:89:28:4E:20:B2:BD:BA:41:23:C0:99:CA:5D:EA:C4:FE:D8"}}},"request":{"raw":"GET /img/ulogo.svg HTTP/1.1\r\nHost: zooma-amp432.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://zooma-amp432.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Wed, 25 Mar 2026 15:45:11 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Referer\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}],"data":{"size":39410,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (38271), with no line terminators","md5":"f3f6b2fe8f55a536850486d5bfec80e2","sha1":"2e13a9a53b91f8a6ba791a8bed5ff1b2beec73f5","sha256":"5977551b13c7c2979ea66c51ed615565f2334cf7eb2dee58e7144247f28dcc91","sha512":"4c7a0b645d82e57c29cb721d9e151dfa7d4fefb16902edf81b96761891db87f949cfedbb5957ca92378c05b4572ddaea0a90d5d5291347baf5a0183dcf76327b","ssdeep":"768:aACNkgbO5j0vWem0cizxt52ZeW+CdNpgG3II0ThI+gme8M4vigob:a8iWKrWbdNOG3II0TbiDb","tlshash":"3f0382599383212a216faad56159a78b63b2b836d4330ac4fff8076dc2c7de5033dd25","first_seen":"2026-03-25T15:45:37.722571Z","last_seen":"2026-03-25T15:45:37.722571Z","times_seen":1,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":163,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zooma-amp432.online/img/blocked.png","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":443,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://zooma-amp432.online/","date":"2026-03-25T15:45:11.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.zooma-amp432.online","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Mar 2026 06:07:46 GMT","end":"Tue, 23 Jun 2026 06:07:45 GMT"},"fingerprint":{"sha1":"23:E4:30:49:B9:EE:73:01:39:E8:A7:39:05:83:61:0D:74:3B:23:09","sha256":"B8:D1:85:0F:BB:08:7F:66:50:E5:3F:96:7F:90:EF:89:28:4E:20:B2:BD:BA:41:23:C0:99:CA:5D:EA:C4:FE:D8"}}},"request":{"raw":"GET /img/blocked.png HTTP/1.1\r\nHost: zooma-amp432.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://zooma-amp432.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Wed, 25 Mar 2026 15:45:11 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":284,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"e9e77758bd38d83f3b86e3c1021735de","sha1":"79d08662d215d273557ab913db7c738bc58ad0aa","sha256":"c0564a4f55a87d088daf1795506255277c744583725038fe2a37d098a2cb26c8","sha512":"f3fb64e272a82292be369d94c0544aa7d03c086d86fea6158ba7c62d3b7a42d29d8f102725fef4c733f45fc8fd53f37463b56507cb02229524110d25e38c16c9","ssdeep":"","tlshash":"09d0ebefa05f10191e0313802ada5a81300610f8a04708cc9a4fe08362e85be8a4a84c","first_seen":"2026-03-25T15:45:37.723517Z","last_seen":"2026-03-25T23:39:17.337024Z","times_seen":2,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":103,"dns":1,"connect":52,"send":0,"wait":55,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zooma-amp432.online/favicon.ico","fqdn":"zooma-amp432.online","domain":"zooma-amp432.online","tld":"online"},"ip":{"addr":"185.4.66.132","port":443,"asn":12722,"as":"RECONN LLC","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://zooma-amp432.online/","date":"2026-03-25T15:45:11.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.zooma-amp432.online","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Mar 2026 06:07:46 GMT","end":"Tue, 23 Jun 2026 06:07:45 GMT"},"fingerprint":{"sha1":"23:E4:30:49:B9:EE:73:01:39:E8:A7:39:05:83:61:0D:74:3B:23:09","sha256":"B8:D1:85:0F:BB:08:7F:66:50:E5:3F:96:7F:90:EF:89:28:4E:20:B2:BD:BA:41:23:C0:99:CA:5D:EA:C4:FE:D8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: zooma-amp432.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://zooma-amp432.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Wed, 25 Mar 2026 15:45:12 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Referer\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}],"data":{"size":39366,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (38225), with no line terminators","md5":"41ff1fd5366f99b726da178a209e14ff","sha1":"63d2d24832c2aa6274d8ee7af8f135c2ebe7d2ce","sha256":"e6f3c40b3efa58b7921240d76809e0043f8e2161224b7f11cda095e802e7686d","sha512":"60e6fea3a075f335ecd2dc58bb3de0caadfb462df120ed4dc2b8390242c06bd4ecbdb2ff9edab6c75363cd8fd220561473a0e8d2f613fb740bed6898106375e7","ssdeep":"768:aACNkgbO5j0vWem0cizxt52ZeW+CdNpgG3II0ThI+gme8M4bLd6ob:a8iWKrWbdNOG3II0Tv/b","tlshash":"de0392599383212a216faad56158a78b63b2b836d5330ac4fff8076dc2c7de5033dd25","first_seen":"2026-03-25T15:45:37.724369Z","last_seen":"2026-03-25T15:45:37.724369Z","times_seen":1,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}