{"report_id":"580f6e26-86e5-43c2-ac13-8c95f5348ac5","version":6,"status":"done","tags":[],"date":"2026-03-19T12:13:25Z","url":{"schema":"http","addr":"rta-garage.ru","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"final":{"url":{"schema":"https","addr":"rta-garage.ru/","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"title":"Система KRAKEN: маршруты расход простои в одном окне","dom":{"size":31316,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14628)","md5":"e39247cb5dfe64354f9a6c54e7e92cc7","sha1":"e0df44fa5865f594beed44b7a363a168b3347e3c","sha256":"b458983622fb0769f4dba0ef29e9f80130f09de4d625165957ffb2cbdfb8b45a","sha512":"4e41cbbcbbb900af868ec8b7e4af02f8bdb022ab9dafaf5a2dadc68b1b18c0f44075a1aed4eab175eb097b8e3e31777a6eef549c38722bade8f085ed24ed2f89","ssdeep":"768:OsqefwdNf6pGiJo2RdB8/uFj7aRFelIbAaJa:VfwdNsRD/8/udaRUlSa","tlshash":"43e27d75459b102736057569ea11ba0dad97c03fbd9f7c0277dc26ae3fe26a0ca1b308","dom_hash":"domhash5dc7288054b708787b846239ee28eb93","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"rta-garage.ru","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":0,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-23T12:13:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc","ip":{"addr":"172.67.178.157","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-12-27","domain_rank":0,"first_seen":"2026-02-25T00:54:55.480171Z","last_seen":"2026-03-19T08:51:39.279922Z","alert_count":0,"request_count":1,"received_data":1531,"sent_data":494,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"rta-garage.ru","ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2015-04-16T13:07:28Z","last_seen":"2022-12-11T12:56:46Z","alert_count":19,"request_count":19,"received_data":875903,"sent_data":11177,"comment":"","tags":null,"fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"rta-garage.ru/","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"cb322404f8b0914d1817013c20fbc206","sha1":"ff709a9d8a545a11622d018310730ff53ce22d3a","sha256":"846047391101e03e5f80406e24d737e53b96bf178d20b26efa18ff78f85aa72b","sha512":"65ee8349b7de2922b210cd9908c6646dab2401ecb3dc77f84756082240c51c6794be14ade7deac4c5b5c2d7044b70a1bd1582ff99b60eb8bf75928d4425e85b5","ssdeep":"","tlshash":"59f0c0953cdd44288376116527bb9148782969292c0aed15b54c84412f59ea814bb54c","size":538,"data":"","first_seen":"2026-03-19T12:13:27.713918Z","last_seen":"2026-03-19T12:19:34.894285Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ebdb6da2c5b8bbe3f6ba066ba975895b","sha1":"a9b8dfc03f2451b67a35e46705ef80d07d7a120c","sha256":"1c40d9038ba32e18774f2dcb68a01bfb378e89f069d53b8d43fbb579e8f45ed6","sha512":"91d744f19ac9692aedc821a19042a43fdf9a9891afb9c86b2d91a979145e41b7b1446808a7f2cb0d1e384a4ece85120c69ff812282377a1d4b4377c622ee19bb","ssdeep":"","tlshash":"58600033300c0003cc0c0c0300c00c0000c0003c000ccc303000f00c0f0000fc30c3c0","size":15,"data":"","first_seen":"2025-11-07T18:36:06.466308Z","last_seen":"2026-03-19T12:19:34.895414Z","times_seen":235,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3d76434440217651dbfe53beeb2be350","sha1":"fddcc91b4ad719494a039ae028a7760024d9fdbd","sha256":"b02eac6ed7442daddbe9d8358341d39a4a5042c30cc9af42b253ce4db78fedbf","sha512":"0fcfc094c4a9d99329dad04bd28d5d05806fbc95f91aefd960d02a57767bab11eddc7c8eb9a0041983beae313bf4137cf396cb1dc4701a0864b5108ff1e41e51","ssdeep":"","tlshash":"e111d4b9724474616e96a069576bd08ddabf23120cde4d1049036a948b34b2acfd5e68","size":939,"data":"","first_seen":"2026-02-25T00:54:58.632673Z","last_seen":"2026-03-19T12:19:34.896201Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/14327861451_https-blacksprut-com-blacksput1-com.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.536Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/14327861451_https-blacksprut-com-blacksput1-com.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=MpD5IB8HW2vSoVNf; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: image/jpeg\r\netag: W/973354291\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":52145,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"0a173f6146c6bdc04c7b1e2ebf66db2c","sha1":"74df1db69d2933bbcd37945eafb2a43aa034ed85","sha256":"6829c0f401e3d36c21a569196c59ec4d1c03ee18585dce889c688c1d0594743a","sha512":"7eaf19c01111b0bbbc13a18289778f4c2be1cfa2f1c7d08e1cacd7f469870bef96e8827b5b772641061dd1491d7015a06db652d77e9832f44f22c9f9df48d1d6","ssdeep":"1536:SDPkxQR85xfBg2oyWPsJD8+2lDf4scV62B3vSrb:KrmtBgZGDQlDfHcUb","tlshash":"3433026cc8b67577e03e38647f05e3879184ed66b4172b8bc1a6026cbb680d77689dcc","first_seen":"2026-03-19T12:13:27.694837Z","last_seen":"2026-03-19T12:19:34.874914Z","times_seen":2,"resource_available":false,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/22235833881_vse-adresa-kraken.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/22235833881_vse-adresa-kraken.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=owQ4w6ayhihOSgf7; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/41467805\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":58994,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"e375ef027cce7d3c0d390f0742c60e6a","sha1":"8ac9c3d0c3b69b31c40e2c038e4bf8a256dfa1dd","sha256":"e5a878213ff0333002572550e43069cc11e393cbcf98144cc2cb13cb510fb844","sha512":"231650aa8c86e9160e4c54875196d7d52ef14aa72b7ba5d4a3e4fcf3853af8c61e0688006e9e4cd3db30415e6f7cf1b9d1993c487826de8504b64ffc12edd4bf","ssdeep":"1536:S61dK7b5GCr6+5yOLKY4mcFD970FaLGKcm6H:zmrRumcD70Ay2C","tlshash":"d743020f171fe313713adaf7f65a49331f80246873b144a9758b4489f78a5f453aae84","first_seen":"2026-01-20T10:40:59.225156Z","last_seen":"2026-03-19T12:19:34.885386Z","times_seen":3,"resource_available":false,"data":null}},"time_used":914,"timings":{"blocked":506,"dns":0,"connect":0,"send":0,"wait":408,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/templates/KRAKEN_CAP/img/logo.webp","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.543Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/img/logo.webp HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=YDaGvrcrtzpOtq7t; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":13996,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"RIFF (little-endian) data","md5":"5300a98bf7f37b997fe648378208b746","sha1":"9c37be9ed0f900df6d1ec76c31c55f0f5e1d0619","sha256":"afec6c7de8ee787409e548d14e06a7c4e0fb825fdc66214dd6558d6fa21e2c4e","sha512":"84e69b67f7af6fd7103669b00b52c755fb24407a2b3d62ef28ef6c191d0efcd652c2cdf5367a89250bda0f4cbf2730a898bb7e7c5eb1292c24f5d77e4cee2b4a","ssdeep":"384:9Bgw9Pw8a4XeO6Y1YX43hCej6YbErEXHxt0MeAx3K8C+xq1Q:vgwtI4XeOwX4xCelxXxG0g8nz","tlshash":"0392bf07224e9361c2fba0f9c55b1bd8d4139680b7d6ead4c508f2e15cae724f69d8e8","first_seen":"2023-07-13T18:41:18Z","last_seen":"2026-03-19T12:19:34.886135Z","times_seen":104,"resource_available":false,"data":null}},"time_used":1098,"timings":{"blocked":714,"dns":0,"connect":0,"send":0,"wait":384,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-19T12:13:03.611Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=oGqcLm9M9JCwRVPD; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:03 GMT\n__ddg10_=1773922383; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:03 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:03 GMT\n__ddg1_=6OiIwSh0Zo4JQ5GwoLKt; Domain=.rta-garage.ru; HttpOnly; Path=/; Expires=Fri, 19-Mar-2027 12:13:03 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: text/html; charset=utf-8\r\nreferer: \r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":32266,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14628), with CRLF, LF line terminators","md5":"4b6e883616d90099044b90ff1b87709f","sha1":"af680afadb28d2a3eed06d84ce8e695ddf195b10","sha256":"a5063834ba9cebae1e334134ff514bb29cc195c80ac50e04107a52f895dce5bf","sha512":"9020f2d00bf668466ec028ce51c705dc43cbb2f5f6a6ee666369a05916027a9bd1216a8a2af1fd142668c6a53044b21846ac181bd3deceb1ae7e43883e9b1bab","ssdeep":"768:IpEtfo1Nf6pGiJo2RdB8mYq8PRFaC7/bXC:Zfo1NsRD/8miPRIC3C","tlshash":"55e26d34558a182b27326179da10ba4cfd5b817fbe9f290136ec27ab3ff2650c617748","first_seen":"2026-03-19T12:13:27.698199Z","last_seen":"2026-03-19T12:13:27.698199Z","times_seen":1,"resource_available":false,"data":null}},"time_used":829,"timings":{"blocked":50,"dns":4,"connect":20,"send":0,"wait":728,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/2709c77064216688e3f4b99b1ca580bfd435b978.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.532Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/2709c77064216688e3f4b99b1ca580bfd435b978.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=TrjCELmj1tkOyjTC; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/1479116074\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":48985,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"90c6f9427816bacd491138f29280a783","sha1":"2709c77064216688e3f4b99b1ca580bfd435b978","sha256":"43c974563307eb64bc2926f78454efdc4808ad13071f1cfe79226bc04a6371c6","sha512":"aece5428aaebc1c009450ee394d66d3dad2b4169dd8900585e59cdfec6aa65d057788b11152bcdc14738822a5c07ea4b2ebaeefc3f0aa0094620589e607f1f58","ssdeep":"768:SZ6effWcUIsVj2cM34I7YQbopE+c7vR8S1jUSeQuRUB4swU0YsRiEkApROl59030:SZJfW39qF3tNVV7mw6RU+soRiXDV","tlshash":"ec23e14f448c6ad1402d5164fe462e8fea97ec577ccb32a742a01dce3f785a9e90dc09","first_seen":"2026-03-19T12:13:27.699201Z","last_seen":"2026-03-19T12:19:34.87334Z","times_seen":2,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":749,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/20398594131_kraken-oficialnyj-sajt-zerkalo-kraken.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.534Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/20398594131_kraken-oficialnyj-sajt-zerkalo-kraken.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=296Mdvzg4qbzgLZ9; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: image/jpeg\r\netag: W/1947741797\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":60102,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"a99081e0ada23a6d8a6200bc14628279","sha1":"03554bb198ee3307fe878261922886b94376d5d4","sha256":"41f0287e5ea3abb95376fd64f6efaa79d8f63f41d8d95bc5295596db60d05373","sha512":"5cc6c601e9e411f8455f8f16b7e02e6d6960f94ce08c0f3c2357b5c53ab95a9b07cc00a5aecd20b9b1cbbb8db047ec12182f81386ba174ff7174ccf6abf68953","ssdeep":"1536:SnLPnRtaEtPTHTmBf7FTSZjp1Yu/YFiuf//9zLR1uc2l:qnR8EtbHTezqpCu/YNnlzq5l","tlshash":"c643f231149549c30bfcdaa21c64a51a181e135336f8e6787e4a3ef9ff056f06578bd4","first_seen":"2026-03-19T12:13:27.70002Z","last_seen":"2026-03-19T12:19:34.869778Z","times_seen":2,"resource_available":false,"data":null}},"time_used":444,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":444,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/31661189661_kraken-vhod-ssylka-onion-kramp-cc.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/31661189661_kraken-vhod-ssylka-onion-kramp-cc.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=GegHi5MKh36lUVHV; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/1779003539\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":51326,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"b8dfe6a182ad32827d2cd5bab8cc9932","sha1":"8ff36dd703f553362df3252a9bc368a6f0ee95e0","sha256":"118052b8ab1b148766fa6ab81f6ced3060894a59591abb6f2edd184b360ea6da","sha512":"60e94d7db4d9409a8ad896b650c251147ea4b9f8004954f49339690f86ff681aa7ed221d5c3d8006f47e82270452ed2aa51804a986f13492df23f1dd8a41434b","ssdeep":"768:Sa7z2nwK7AAcOlZKOTygmU+b75RuptqlvuAg0bkX1qbmaMVkZni7wJ5p:SaHEwLAcwKOTye+f5R0AvuTOvK4icJv","tlshash":"b133f2ec851937c8e10f0af8999ee216bcf42e8937d6b4d5bb6770d48491c49e0863e9","first_seen":"2026-03-19T12:13:27.701002Z","last_seen":"2026-03-19T12:19:34.891654Z","times_seen":2,"resource_available":false,"data":null}},"time_used":955,"timings":{"blocked":560,"dns":0,"connect":0,"send":0,"wait":395,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/templates/KRAKEN_CAP/fonts/Montserrat-Regular.ttf","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:05.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/fonts/Montserrat-Regular.ttf HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/templates/KRAKEN_CAP/styles/style.css\r\nCookie: __ddg8_=KK5eTOQ3fJAO6JEf; __ddg10_=1773922384; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=vh2cppp1B27N3MGX; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":197976,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"TrueType Font data, 16 tables, 1st \"GDEF\", name offset 0x5200016d","md5":"5f72a800c0699be01bf0359713a8b2da","sha1":"fbbda4cd9c07481c558ae9683c927b455892afc9","sha256":"630f8ae712b7b6328e6ddeeddfc6e024a813091840f2021c40b4792fe0595fd4","sha512":"3b8e9fc37a60d784824bf142dd5b8d861a971e2e44292a600ffe52311fbf46d5f1ab6eeea084d3e5cd11a487c03439eff5e27ccde53b929ad0c0a433348cb6e0","ssdeep":"3072:X1lVLYf3EdzoWpiJ0ffmqPHmcmKjtsHhC+of6MuFLBLY7S5dvQFMxzpSKEELaAf:X1lVLYUrc0ffmqdSzvdVpSK1","tlshash":"5f242917fa17075ed5c68ff89ef80790a35cbe9c79148bc9c42e5160d78b9aa314ca8c","first_seen":"2023-07-19T05:17:54Z","last_seen":"2026-05-14T11:41:34.848759Z","times_seen":140,"resource_available":false,"data":null}},"time_used":723,"timings":{"blocked":260,"dns":0,"connect":0,"send":0,"wait":463,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/templates/KRAKEN_CAP/styles/style.css","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/styles/style.css HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=KK5eTOQ3fJAO6JEf; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: text/css; charset=utf-8\r\netag: W/384157218\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":7386,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with CRLF line terminators","md5":"e64a2c9536d74438497f49d7546dd238","sha1":"72f60e5616ce747a758e77056b1e9f35d5caf1fb","sha256":"b5f2f5b8acc41af5d1e493354718795990ecd36bfa05e02471546976c4c71b7e","sha512":"6fbb19853c1eea122f4ed7bffa1fbb138179897b343006a20c328f18cad24803381d10d62103218977a67154fb4f8bd0c133718729230d7ff54e7d41f31d95b4","ssdeep":"192:hVvIgYSG+I1dzTMsD7eLJu5f7wJCs52obc1pfutK:v+fP","tlshash":"2ee1bc49a6052005a2b3a97cbbb20b14eb6544635b8b91f979ec9348cff907942a1fdc","first_seen":"2023-07-05T20:50:20Z","last_seen":"2026-03-19T12:19:34.881959Z","times_seen":746,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/d3c28f546a00d13b45bbdc607b3a41b148bc9beb.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/d3c28f546a00d13b45bbdc607b3a41b148bc9beb.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=5id906yZZDaPCDsJ; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/3308037671\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":34208,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, progressive, precision 8, 550x413, components 3","md5":"1ce0f961df8cb3d3de73506c4be2171b","sha1":"d3c28f546a00d13b45bbdc607b3a41b148bc9beb","sha256":"209d57dac9110f896f46633d5593a9fb006f2ad56ccc0ae4e66b2fc6a2a173e8","sha512":"31022590f0e7e8f2b578324e93967006380511e8d055859a3825644d8005a0ee24f51937ad68078b1bf7ca396bf5bb94e85c92e98941659a06ed276f42ba5eab","ssdeep":"768:U5GTgOFvuCm/aIml01pNioZcIcIqCj85Bcm8Sz3+ivnmXmOxBQGNlAk:KGTgOJa/aImlMNjcRwj8Cm8kHNOrdNlx","tlshash":"7ce2e08b518b451cf64e0e9381ef4199d690ea023f3968dfe95f794c4b246c4d4b263e","first_seen":"2026-03-19T12:13:27.703759Z","last_seen":"2026-03-19T12:19:34.876604Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1048,"timings":{"blocked":615,"dns":0,"connect":0,"send":0,"wait":433,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc/get.php?site=rta-garage.ru","fqdn":"secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc","domain":"avocadodevelopers.cc","tld":"cc"},"ip":{"addr":"172.67.178.157","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:05.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"avocadodevelopers.cc","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 24 Feb 2026 14:34:35 GMT","end":"Mon, 25 May 2026 15:32:17 GMT"},"fingerprint":{"sha1":"EC:58:74:51:6D:59:3D:84:2A:2B:E1:D5:5E:61:C8:44:0E:FA:BB:37","sha256":"0B:3A:9B:A8:58:A7:12:4B:98:3F:8D:8D:2C:64:03:59:82:12:E2:B0:F1:F9:41:B8:62:AE:52:CA:1A:D7:10:70"}}},"request":{"raw":"GET /get.php?site=rta-garage.ru HTTP/1.1\r\nHost: secur-kfeu9whfg8w2g3rfunifuihg87y.avocadodevelopers.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://rta-garage.ru/\r\nOrigin: https://rta-garage.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: PHPSESSID=8eas91s7p4h0bvmtg6s17skrt1; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TW5E3sTB6QJKTtwcCEbHMAs7pQr5Tq6uchVZDHNIhRfDW4bQWWds5rvtNlbJhcn3fpil8PpJBSEffmeo%2B6AWkvVNzkLRo9%2F%2FBV6OyRf1ijuHl%2FlyLHIxz0T34kptl7aDAK39KRr8hjeyGDUfERmlYKAr8AMh6w%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9dec639b0cee4eff-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":617,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"35ca4286b1becc30b69b34fa331b1fac","sha1":"b885b5cb4f159efa822574409bea4be612dcc799","sha256":"69f59a8cb17f40b6f80116dd1fdd7d2ced121706dc4fee985e1ee8cf9e2cce62","sha512":"f67fea3ad32b84f434dd25e413c45c6e9bfdd019d79498982743d598f5409aac2faccaeb7621f8c15118029c78fb105d53a25a58be66b1b2da60aa9f6e0d936e","ssdeep":"","tlshash":"0df02df7d249209a0350a5e0cd05ba1d6de341fe38f67902d5f02e6fb8d17f4c60995a","first_seen":"2026-03-19T12:13:27.704605Z","last_seen":"2026-03-19T12:19:34.886874Z","times_seen":2,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":47,"dns":11,"connect":10,"send":0,"wait":131,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/templates/KRAKEN_CAP/img/favicon.ico","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:05.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/img/favicon.ico HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=MuiW5vsFJpK63oT6; __ddg10_=1773922385; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=iQFYpxHxlrHv1gQP; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:06 GMT\r\ncontent-type: image/x-icon\r\netag: W/3306516344\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"8b49caf1ff0717a2b01e3da803e2ef2a","sha1":"90b0e92c2251150d6b5d1038842208f9ceeb407f","sha256":"2c195444f7cb1c9023cf1ca7c0d52cb6d116d22b4c96453b12ca356daf77cb65","sha512":"0c9066de2f26a1e9b35a117ab625f00a832d075d4b9683706566a9798633fa9de6f1c33763db4df550597d194af1b9dd0e6bfff798514e39faf97862d758743a","ssdeep":"","tlshash":"b32197cdbb20dc1de54ad0728086c2a2123a7859862a100ff0cd793b3b550585fa2e49","first_seen":"2023-07-10T11:55:36Z","last_seen":"2026-03-19T12:19:34.893621Z","times_seen":107,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/35161816271_ssylka-na-kraken-v-tor-onion-kraken9webe.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/35161816271_ssylka-na-kraken-v-tor-onion-kraken9webe.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=FRtGz4PrXi7lZZsZ; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: image/jpeg\r\netag: W/3378052828\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":33771,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"1e53b204f74ac0cfe4cb5ff46836cf25","sha1":"6c350d98ff75b0b1d1b9b31b155c29191aea9c89","sha256":"5ce77edfe04be57c75a8bc371dabb7d6cfff8a875d6b018e83df4e5b214a0fe7","sha512":"4539ca13c1386cb4e2458a738c5d4f6b20f767a4bb6224a9a84a2da6085f16f9a6c7302160dc72935f557f7881a78d5e544127dd2cc8565733c540b49f9015c5","ssdeep":"768:SuPANhN9UpLxdhL7BMqzUgD+zrO07lHDdg0jFCucIUMu:S6qN92L5t1AgDMXVDdh7Ru","tlshash":"bce2e13be7058221606f0dfedc556e54c1b2dff2ae62d5241924366aefe22c184ee342","first_seen":"2026-03-19T12:13:27.706365Z","last_seen":"2026-03-19T12:19:34.888194Z","times_seen":2,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":439,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/15287994561_mega-sajt-oficialnyj-vhod-megadmeovbj6ahqw3reuqu5gbg4meixha2js2in3ukymwkwjqqib6tqdonion-com.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/15287994561_mega-sajt-oficialnyj-vhod-megadmeovbj6ahqw3reuqu5gbg4meixha2js2in3ukymwkwjqqib6tqdonion-com.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=nlfILGuEpAhE3i9q; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/3729874836\r\nage: 2\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":47830,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"ee84d557c36d82039b0e9014a560e7a6","sha1":"96e47a0371a368a66e17b525b556f3c7d59d7320","sha256":"b1385333662f4339d29684597665073d156137a9734770a67a18cf8309b91722","sha512":"a044a4afe750e3755d17094a2c265b1ad6f2cd915f41139dbac7d20a3378934a754ee2af04d47be799045ba182281d4251dcde08ca028fa044e2393d248be46f","ssdeep":"768:SQRE05vi+AIErbmla0MOxRn+2a8bmPf6FRv0ncv6nONTPS7VgtoyYqxFe:SQRF1i+AxY0wSCe6IIWcTPS7Vg3YyFe","tlshash":"fa23f111870e573e946c443bef4926c69ed199c23a994943bae5f29c4248b5acf33e33","first_seen":"2026-03-19T12:13:27.707239Z","last_seen":"2026-03-19T12:19:34.882742Z","times_seen":2,"resource_available":false,"data":null}},"time_used":642,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":642,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/35440144121_oficialnyj-sajt-kraken-ssylka-tor-kra-mp.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/35440144121_oficialnyj-sajt-kraken-ssylka-tor-kra-mp.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=O08qFzIyPGeUGBTH; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/2085875644\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":35252,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"86d6828630114bc719b750b832990fa4","sha1":"aac283b031841f97553bf0389ba4ee8c60b4e411","sha256":"b340e13e0423852a03d5ff462868f86c2b7cdff937bce168a93b33f497eeb079","sha512":"3542de2e7fb64a919f8f3beab0f491972380dabf2f04c5cf3bfd68d2c5bce46b538a2fb66a8528b689ece9fbebf172d5a22f1da7ab258fd1445ea6b07e00f962","ssdeep":"768:StKFLkFIcsiMOKlP2iHCwy4gByJDNjv4rfyia1cp:S3AJrz7gcpjQraiayp","tlshash":"daf2f17ebb185a12693e2cb29c584df01f61e14417cdb20bee18aee73bbcc158355d1a","first_seen":"2026-03-19T12:13:27.70812Z","last_seen":"2026-03-19T12:19:34.884155Z","times_seen":2,"resource_available":false,"data":null}},"time_used":877,"timings":{"blocked":496,"dns":0,"connect":0,"send":0,"wait":381,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/90785079421_onion-gidra-adres.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.540Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/90785079421_onion-gidra-adres.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=eIVpgggQnsLeAiOF; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: image/jpeg\r\netag: W/3915332669\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":31755,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"782053a65e187af62bb087a211fa0e80","sha1":"d85157acac15f48b174364ca899f6a612ed0115f","sha256":"da468b10d02543117525098c412cdf68d1a5c4b4c206499bc95785528f431c9d","sha512":"fbfbf23587102877fcb21111d4f470c0d0672a3642ccc63175c25698c00fe733c47af340b1b746b5ae9d7959aa17f940a0b05d36522f4136b63e37f66c93685a","ssdeep":"768:SYv2dOB5R+72czzxvucsepYb75AXQf1SYR1zkub1ZD5:SYrK/vucseHXQfgYRCYD5","tlshash":"81e2bf13b9840a53ca1c6af4bd1a4e9b9f6c671890e12dee41275ec377c67730c0a17e","first_seen":"2026-03-19T12:13:27.709034Z","last_seen":"2026-03-19T12:19:34.871631Z","times_seen":2,"resource_available":false,"data":null}},"time_used":954,"timings":{"blocked":506,"dns":0,"connect":0,"send":0,"wait":448,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/templates/KRAKEN_CAP/fonts/Goldman-Regular.ttf","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:05.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /templates/KRAKEN_CAP/fonts/Goldman-Regular.ttf HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/templates/KRAKEN_CAP/styles/style.css\r\nCookie: __ddg8_=KK5eTOQ3fJAO6JEf; __ddg10_=1773922384; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=MuiW5vsFJpK63oT6; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":77276,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", name offset 0xa9000005","md5":"a46de11151df704939107617999a4d7f","sha1":"a54569b16f2f9ba2fcf23c42810860483c22c5c9","sha256":"69307446f5aaa5e84bb5c07156e4244d65dc64bffde8877a470e8ae446f3c9f0","sha512":"ff891c44e5b273fe1202380c0beae757bc56708a033546c9202e65eb8ae4702a1abed85dc08b1080ab420d3cc07f3a2d69fa1c0bc9053ee309ae1a48f605aa76","ssdeep":"1536:Q9hLvIjebpyYKZTVkX+Wlp3S4sacFlwF2RcPr3DN:2lv+ebpyYKN+X+WDS1aO6F2WPr3R","tlshash":"52832a17a710a759e5714ff47e9da38037acf4ac3805538ad01c5aa36f4f8983e4ba9c","first_seen":"2023-07-19T05:17:54Z","last_seen":"2026-03-19T12:19:34.878988Z","times_seen":102,"resource_available":false,"data":null}},"time_used":785,"timings":{"blocked":281,"dns":0,"connect":0,"send":0,"wait":504,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/pbnlink.html?_=1773922385286","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:05.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /pbnlink.html?_=1773922385286 HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://rta-garage.ru/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: __ddg8_=TrjCELmj1tkOyjTC; __ddg10_=1773922384; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=p4TmBQdq20LHyYir; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg10_=1773922385; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:05 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:05 GMT\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":617,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"35ca4286b1becc30b69b34fa331b1fac","sha1":"b885b5cb4f159efa822574409bea4be612dcc799","sha256":"69f59a8cb17f40b6f80116dd1fdd7d2ced121706dc4fee985e1ee8cf9e2cce62","sha512":"f67fea3ad32b84f434dd25e413c45c6e9bfdd019d79498982743d598f5409aac2faccaeb7621f8c15118029c78fb105d53a25a58be66b1b2da60aa9f6e0d936e","ssdeep":"","tlshash":"0df02df7d249209a0350a5e0cd05ba1d6de341fe38f67902d5f02e6fb8d17f4c60995a","first_seen":"2026-03-19T12:13:27.704605Z","last_seen":"2026-03-19T12:19:34.886874Z","times_seen":2,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":166,"dns":0,"connect":0,"send":0,"wait":83,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/24487204711_ramp-union-ssylka-tor-ramponion-com.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/24487204711_ramp-union-ssylka-tor-ramponion-com.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=pHBXFBFQpXgwcwfi; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: image/jpeg\r\netag: W/1883550822\r\nage: 0\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":30992,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"287b5a5f9eb5d8849efeffbe12908a4b","sha1":"9cff6bee9d180412543e68b70b62a6b93acc1505","sha256":"69d368758f89b4b5330149b323f1674875871bb98848e9703565f65746fb1e96","sha512":"d0365135fcfb5ff0919736391fbb6911644280e4b706829e9ee0acb9fb0ee87034e5ce196aaefc9ffef78fa530654079cf730c6a158e144bbbc75cf8523f9c69","ssdeep":"768:SsC9rU+MdvFgrltpfaufVdVnjWO8Qt4aX2ieyfh:SsCGNsrzpXtvjWO8Gnekh","tlshash":"46d2cf170d24d78a946c8ae47f078ccc2e5eeb28c5943ed664477ebf6f54322a4ad10d","first_seen":"2026-03-19T12:13:27.71168Z","last_seen":"2026-03-19T12:19:34.889457Z","times_seen":2,"resource_available":false,"data":null}},"time_used":496,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":496,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rta-garage.ru/PARSE/DATA/IMAGES/36132334131_omg-chto-eto-takoe.jpg","fqdn":"rta-garage.ru","domain":"rta-garage.ru","tld":"ru"},"ip":{"addr":"186.2.175.37","port":443,"asn":59692,"as":"IQWeb FZ-LLC","country":"United Arab Emirates","country_code":"AE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rta-garage.ru/","date":"2026-03-19T12:13:04.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rta-garage.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 26 Dec 2025 08:32:32 GMT","end":"Thu, 26 Mar 2026 08:32:31 GMT"},"fingerprint":{"sha1":"C3:C9:8A:C6:E8:AB:F8:56:8A:E5:E4:C9:92:37:22:33:73:EE:58:20","sha256":"4A:B9:C1:43:22:21:4C:B4:67:10:65:90:5F:44:CF:63:7B:DF:9A:0C:37:E3:4A:AD:FE:4F:4A:1F:66:2A:53:AB"}}},"request":{"raw":"GET /PARSE/DATA/IMAGES/36132334131_omg-chto-eto-takoe.jpg HTTP/1.1\r\nHost: rta-garage.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rta-garage.ru/\r\nCookie: __ddg8_=oGqcLm9M9JCwRVPD; __ddg10_=1773922383; __ddg9_=91.90.42.154; __ddg1_=6OiIwSh0Zo4JQ5GwoLKt\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: ddos-guard\r\nset-cookie: __ddg8_=467zumejN7ge3ija; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg10_=1773922384; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\n__ddg9_=91.90.42.154; Domain=.rta-garage.ru; Path=/; Expires=Thu, 19-Mar-2026 12:33:04 GMT\r\ncontent-security-policy: upgrade-insecure-requests;\r\ndate: Thu, 19 Mar 2026 12:13:04 GMT\r\ncontent-type: image/jpeg\r\netag: W/839364321\r\nage: 3\r\nddg-cache-status: MISS,MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"DDoS-Guard","description":"DDoS-Guard is a Russian Internet infrastructure company which provides DDoS protection, content delivery network services, and web hosting services.","website":"https://ddos-guard.net","common_platform_enumeration":"","icon":"DDoS-Guard.svg","categories":["Security"]}],"data":{"size":49687,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85\", baseline, precision 8, 600x400, components 3","md5":"3db6ff3c84aa337fe28842cc60eca944","sha1":"fb0d615a6ef7f5ed4901568eefd4f7434be6b35b","sha256":"d257dae0bc213daac404817d9fdb5e3c303112f8cfc183e19d4d6f4b456cffac","sha512":"533405884a209665bcd9ba1c7a2ac17334ff65b324c5b71785c90a0ed7b395a946384c367fd91f58073492a633c2bba2e424d7cfc23215138edbb379e39f2cb0","ssdeep":"768:S0sznZaWTxvtpGFJ3FBlqtmuTw+KDvbIN7AqgKHW3NxpQXYn5ghm2H7fJq93bxtG:S0sznM+AJ3F/X78Dg40NxpKY5ghxk9bu","tlshash":"112301270c53050f8c6e8f6b5d5b0e59d36a60a84b5e162e0b630ed77b94c9dbe480ef","first_seen":"2026-03-19T12:13:27.713058Z","last_seen":"2026-03-19T12:19:34.867305Z","times_seen":2,"resource_available":false,"data":null}},"time_used":633,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":633,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-19","alert":"Sinkholed","trigger":"rta-garage.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}