{"report_id":"5d7b52f3-9e22-47e8-891b-79ec506eccac","version":6,"status":"done","tags":[],"date":"2025-06-22T04:27:17Z","url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"title":"Attention Required! | Cloudflare"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-31T04:27:17Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"bdmusic23.buzz","ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-10-12","domain_rank":0,"first_seen":"2023-10-12T19:59:13Z","last_seen":"2024-01-09T22:24:04Z","alert_count":6,"request_count":6,"received_data":44933,"sent_data":2420,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.824558+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/styles/cf.errors.css\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/css\",\"http_refer\":\"http://bdmusic23.buzz/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":920},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":10,\"bytes_toserver\":1298,\"bytes_toclient\":8012,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.862715+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":2,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/images/browser-bar.png?1376755637\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"image/png\",\"http_refer\":\"http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":725},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":14,\"pkts_toclient\":12,\"bytes_toserver\":2105,\"bytes_toclient\":9374,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":59100,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.873370+0000\",\"flow_id\":154900244670138,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":59100,\"dest_ip\":\"172.67.182.47\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/images/cf-no-screenshot-error.png\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"image/png\",\"http_refer\":\"http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":943},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":683,\"bytes_toclient\":4134,\"start\":\"2025-06-22T04:26:55.861882+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":59100,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.887906+0000\",\"flow_id\":154900244670138,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":59100,\"dest_ip\":\"172.67.182.47\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://bdmusic23.buzz/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":1760},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":9,\"pkts_toclient\":10,\"bytes_toserver\":1378,\"bytes_toclient\":6772,\"start\":\"2025-06-22T04:26:55.861882+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ab1ac4cf0f484cc9f859c0a7983353e0","sha1":"2da142b1135bd10cdbed4a7353e4483acc30ebe9","sha256":"50e878a18b2b5be7071dc7c10297381bcfcb55f17c27760ee857af9e31133324","sha512":"9e2901fe2c4505797cbc7d3853280cb3450188bd0cba66ffe5c8055687578c849b31a74c6b56881bb07c195217e9604a88ba6995a4275419ca076424ebe88b0a","ssdeep":"","tlshash":"73d0a72677ee14a8129bb031154e2705212180024002870d7a1c92359fe0e2708259e3","size":210,"data":"","first_seen":"2023-03-07T01:03:09Z","last_seen":"2026-04-10T12:55:43.150318Z","times_seen":350843,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"56df91490fa1984fa82b297dcb23c22d","sha1":"2050f127b73f50d21eb9b0a2a3f2aea7d4372ba9","sha256":"275407540ae2d5516300e4027ce994e1c97f958d464e137d0fff116d7acf0f24","sha512":"537ac565ea049803015a3b15881913d8179eafc11f95ac99dfe0ee842ac3d496ea3c6e1c167274357b7443e32ea9efab72400b95798479c5a5c81c9aabc88e8b","ssdeep":"","tlshash":"bbe0dfbbbb192e3906efa67771aee74a3676c091acc05560092ccc940b3fec4d03a1d4","size":375,"data":"","first_seen":"2023-03-07T01:03:09Z","last_seen":"2026-04-10T12:55:43.150796Z","times_seen":401434,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"16f6161217e242dffadf4241d174abcc","sha1":"304832d02caf7b8a45ea29c321993d7eba48be67","sha256":"390eefa5af21228aaab4bb7eb68043b2468a645b3c861aaba17b226cc8c05d95","sha512":"886e6c321c801fa26a1363e65eb9ddd6f15617044d57f2b458d235cb396119dbc35e216178258e47ed6a73ad9a6f558e12605621bb3bae8e463c56ae6f9f6d18","ssdeep":"","tlshash":"869004534011730005710337175555403335501310314c0437cdc1153f51f57cf05340","size":46,"data":"","first_seen":"2025-03-04T09:24:28.966015Z","last_seen":"2026-04-10T12:55:43.151351Z","times_seen":213991,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-06-22T04:26:55.719Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Sun, 22 Jun 2025 04:26:55 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Frame-Options: SAMEORIGIN\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DahiR8urEJCbsjHZtXm2ufLPl31xTU2NFTsUUXZddOkdiWgfxyyGVJNUuUWegez3WxzippPaUtk0bowvVG6HQGJ6DoF7rhXnYRbGNw%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nServer: cloudflare\r\nCF-RAY: 9538fd823dbe56c5-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":4548,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (396)","md5":"a305cc18b3420189851f3f9f88049ca1","sha1":"35f67d2897f32dd965bee4ac16cdad274932bc43","sha256":"3b159682209890bec6d292e039cc72566328b0dd8383b960746c662f4d78cb63","sha512":"9060004bb52460c85b053fdd06d9896ad7e1bf9d25c8371a9cc56c5be4691ca709d668467e84e15aa48bcba4100485daf5dafa0c1aeb33ec953cc7d6f9497821","ssdeep":"96:1j9jwIjYj5jDK/D5DMFWC8JzZqXKHvpIkdl0u7RLlvaQxvbK:1j9jhjYj9K/VoWnSaHvFdl0u71lCejK","tlshash":"62917326bafd217e10a3816225ec63497ea0c553c6ab05a076acc1391f9ff59fe171c0","first_seen":"2025-06-22T04:27:18.768203Z","last_seen":"2025-06-22T04:27:18.768203Z","times_seen":1,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/cdn-cgi/styles/cf.errors.css","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"http://bdmusic23.buzz/","date":"2025-06-22T04:26:55.823Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /cdn-cgi/styles/cf.errors.css HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://bdmusic23.buzz/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET","post_data":{"size":12143,"data":"07liQ9vpQolQM-WvzvcAui9EAsrAFbFxx9pvBLA82Ee2ZlAN8dKW2ov$AMzlhw77AsVxAaAxExlvAHxvmWkiVo7y4Oi82g7rsG$c-hnimxA3vQUKiYgIAvKHtid+GQDr1vGtvnhi9dAN$X8AWIyF97ie4PvlKJyV$EtAuUSAvJrUi$ZUg7iFAv2$jDzAUPpsAAULAgRJ9AAyqiAV-9t-AiAn$Sp9aY7UxrtA8jSohid0vg13frt-A9SSZJloAQ9LWYl-I0cE$aZptvb0iQPvBlAl$WXHHTFUt9j52Oh1YZvOV35KiOh1e1vUz5vcmUEwpeakYtA9M+SvZivvstzx35Av9kcvItyYBtNByQbHZBHJ25eEHiEv7udvtA7I9xAvm+sXW8981$FJ2iAwcubUeaSLrEb9l0ZLt1aur0cyV2aguHhb5LtAMDZVWMIUgjfFsSAAUbdyKO0Xh9$UyMKi7qa3McmPivwrjaEGGYBBAh3HHYv$p1N-eqXVGFiwVJj9DoJPxAafmAEU8ba7PK8yK4vYS7PARJt7L2i9p4UxLQo0iA$wl80Tdnu$ruPM2lQAIT+8cMBaKnffTMBmNzdXU8dqv49oxmy22MfzdmpnlSl5axlBhYa+P$SMjbY$3kXtpTKgITxcZPBNcf1FFle18yYTRF1zFirzY$1Df7YGbM2edrrgWxUAvefd8Q+ZvasUMi$-A2GPcAU8HFnTM2AMZi+QMnwRFVgGM8xNrb9RuvTxa+-aQihi-A70vJvRsxHQAzIpAAlcip9ohw3Ao-8gvSAwXiH9xsxdslXtg-7XErAwMgSsj8xbuxgl8hMTiGvRXrgh8d98QmTID$RNA$8xKx-92$FoAN0Aiisvva-sLVXWK0MEaUZ9U990vF2xsr9VxWI1lRLvg8d$rGuwxuG0goQp9pTidvdvAxwSrFMRxpu7$7YU7hSbEyAF-upQWd7c-8MR7-+hrhapBceWqYEYQipuVAlvX249dRG-2PuMqw89NWzsrSm89igmAwq9Sx9rTl8woZmUWFa8Kx38IdKxmaj4F8AAgzUvF2Qd9r8v+XS7AM2gaAAoEK2gxlsfnkwa7PcIRZE0yz58NQtubESx3YS-8ZMujyyvf4HN3Ly5eJYjpMxHs7yMlarmisWRiupvshisumGAnhHrv8ZKicS9EI3pHKgxASx7rzN74s8-6WmF8IyAosHqn8SPfi28WdJp8Wlo68U9gKXt0v9ip3x2slKR2A2SiYDlRrjWKWRalRH3GWzvqzvPNrhRxnEGaWk+d8B1vGTElzEsdVAQMwY8HQ7smNvRp7rIRA73RM2zx-pjXKvRvoKQm-Zg3A+hHslsiPHlZva0Q5hphr-AK9p-ArGVdLp92ma7OXNvrDxXXwJkwtFsxnR21RlZF2zYZbktWwUBqNvJrgg47xi2gFBgMR18kwmRcn$PljnPI56nRHbofAHa1RH1jN$wHldzldIPhzHDPr-HosYKSgmfrOpse$ig$GuD0kt0H29V+fORq9ic1Ax+KQZN6JdOS5f6er6mQZmrbD7-lrPNvIjT3ltpul+sTrcAAo$ivA67UPDNdAELi0AisS-ayAe5RNVoq+YAxXSWKx3dfkNnp+iQi8ugNQxlzvEgv8Yt8nLvn2NUoslARx5lE+8Uv6qivFjNUEkFl-t0Fj2zSdXoWeLt0vFJ-ixZlSMYD3sFlpDQli4YHsiFKFS-gO-Di2hRQMglErPQ9ciAwf+HVpAsUWHpQ+ovc-uhKFAfb6DsJ+aW88WxFAhs+ZAa7DERiO-aU9-AmNxg6E9cU88StJSnAlvFsi0y00RN2-2hAgjdZSr5g79REA0D4-jtwAllEZS2Q9A+wkX+5VQhshalZUbD-S9DrFffhPFvzA2F8GJsmtDpQDvlZ7lz2K5UPKjRillsAVvRQwTKmEHvziGudXK1K20L9uZ+LP0MsEb3VlxlWMjj2ANAsN89DD2y7B8rD0Uu-dxlYjmvAPFxKwWEzOFF9T0sG2UxQ8-AK2ky75i-lnDaUAxEsNEryqELwMKmixWLId+GVx-MXizSnhd$ATieYg90gcS8wZSr-D5haUSn1AAqvIqDRoq+Ug7NiPUNR1tzOP0b7cZ$P-tAGTijVbZ+ZjoBhPociK+snqFed3g5+6Y2qpod41ODlIsgcXMxgBV8sPAp+g-TxDtjsS1p+vAK9oq9fjBAWcHYcW7VtAaxqQKu+wRwtmHcuRF-2INJZPjzSsI2+RcsnFaNNsYvwob$B-$tVxauf5zu0iYUzDKeA0Zt3SAR-eW0GDp9KI5rlxBDgjSmj+XMExzUW+u0vH958xnGlvvRq9qZMEFQxBa$NkBj2mKqWzUBLZF8RspgVOwVbhUnQdVxvSmt4jRnpK0p+rAMuVvxZl8r-lUdbK0W0XFhsFtbsuWsAa6IZAxZ89QomqzEg8nJFoHZpMOXJ9yYXV9G0+jeIHxxlNhi5XB$5Dn+i3K0WI3a9JpEvF4nYjN-80I93lVSv0jgKv0ADgRq1W03fZvOv-NOyY9TYoHU7NZ0i2uXP5q-NvlAlInFonm4v7bcDlX+3wZIUPOI5++lwNlNbUAhZcGmcMZv8YeIIaoXEuPsjRK+38uTsc$mOxUSRLA7DLR2vwZcllcvRPWE75oHFEAZv0w+XFd7G83j5LVKwg0whYjqq7uglrFApLtTtWp21BPInw-AoJ8QcvKoW4kUB9xihksNarNLglgU69Yhh+o7tMWDVia26pVA$uSR+vS0M9yVFGQp3A0UytI2X9NZRA81Y7-ySRU$H9qyLTp+rZwZ7bPXsquiF-j+FRPXa9DriftFcofe-WO4pQ3bGGJofFTDlgl2nGjsyFatKPXsaoV87h$X0Mfs9SQdjiZV-MqlM8qIwF32YcNBUffoPByAS+Rr+avTi20b9MQ6YGxntzsNuF+BlZApArJkU8NWcPQ$SSV09FwItF$k4zWaBJKZGjl-QHl2GSaH28A-F+5N5+jmxgDFr$vP1-S$-6wRLYrccoOE2QiZ7kZMoF9xTtA1gE9fOGc-gliWoru5MMMjB9N00opDdf$gAjy42ySMIgB-pJ8s0fEc3EUeIlAewOWyG29bOb9n4fBYiwja9-qNRLxKeEwXTn9QiU$MhHuNV89bdxg36VNQ-8$TaqQLJXW7BljIOZB$iz-BwtiLbiFr+yqsLDBY9AbOauT6181I3UJs2ds+JRSDOJWgxAxH5AXnfxco9nJao+mBN3mAiKLYhFvFx1SGpV+OEMkW0Tj1blJuRT0+g$4GgPsUQarn7z+2$Ns6iRuTJz5qpzFk+Tu$RNnWMUkk$fU--Hcj$MxumiPFvUnwA+m0aDjvlKZUrv9WuKi3WVu+LtvIw$p9PnAIX5yyQW63kBNYPTEsFvQBSpGgAitHQ6SPcFusxJ2HK1RL5UTI2rMSjgOPxQf094TIfQv-+kL0Mt3kHMMhAZAPWxvSsMfQvFFG9k8AZDhcOOQRuRZk-kM0pAtuL7LTfOWAeEXDZUn1f1nFMlZUYz+gLtpmTcLzATLtnRoOLbxo-rA5K6FVf+HiFPshxBoeF-XMxDMDFv3oU1f5T1f4UPxeum8AUxuisMffgIOeZDMLsxAYAQA1+3MtMV-kT6fEYmZMM6HLxLKxU6KVKr0ux4W6XtaIZtobOcLiwo+4WcHeFc0MZLOvZ9fnlEHFQm36p2A0K9sN36vMTZMxlbMhoeWOKP9Ofx10FSnEMhMJ+T0rXP-MOh9x0uLuM4fPsiMLQqsIHX-og3px7A4BMiHie+f0TE0Kot7h+ZhPWPKeLDfdpxhPMxUzMhvtrIOcO6llQxqxVANAUvZ88rxkL-H7olVh9t0JWMLbXiMQnF9y-YnRKqsxfyg$x+M+0FHO3LOY3O9toeAjpg8inIAR$VW40eaMZAOXhPsc9AB8l-aMexRlKSlh07zcZbFcgLLdoGnZWf3co7rkhY0zZv8iUOKSlbpA4-p2LmYusANMQAlE0RREKRd3MiDlJ7SA4vAM-bADMh8GMtU8A7EO-AM7eupt7LHFgFYupAw4XPpRffKwHPFnpAID89LbOZKMIDf3KMkEheWyMN7qQEUyXiZzLXl6nsvhlQWKdN7ivSnyuMdqfVaM8lciH8g3svTiMRXSsvavWT9tAZAlIn8M3s8hTKyIuDffnRF$KvT3WkFSxMbR2AB10AblB4Ld0uL-s7k87tH8OinOgATf9y0nWRXnXAgUTiUvURxqYeTeF7dL0$FXKMoaOZOeTEsv0RhiZVTM1U-Kj8$uhVFRV1xMINtkAlMxZbf2JqH-h8V6fAaGleXzuk8MQFgquR-qWM-xcPvoM2zz9ilHuehi-wrGTDU2m7wwB336FDMxFep-lls5uSxBp2aIaxnJFO3iYiOQZR4DuRseapDDxtIE+t$i5t5IZtIIvJ3LxMrLhx1wGDWEpAb1vxKpjNwuY6gApRPK1MWs-AZwSf-8BOfxc8790FYkMhTtScZ7kEH7ZAKPlwOdgwI4FP+OaAmeLlItU7qz9WVnUyoW$nawmNYP-A+4L-vjlifdsNHV+v8xmlcmnj+j0wJiwLLRPd1IsVlHoYWhxMzSkMMxOYxKmIg8$l6fnUOiZZxZpAzdy63UKwZ93W1SrlXzWizU9i5mXzFwV2583vnS-F$OgDT9tb+SInHSmZLnZbswq7R9$4lFL4ozxmgfQDsmxo-o3WtMzrZMuDTQKMqcaUfBT27R6tGFXTAT-MaTLAAFveYoMJAl0R-loNkeML9bgFLO0A4STRLiUiqW4npFAF6jg3xcvAg0ZiwXTU4SFXnioXZ7NTltMQaAMeuH0SjVx4a7wrxR21XxdsaMhyobfxdxyE80W86ZvBaKGpd8fiMxWQ9ig6HBns0u8jE0H8-llz3kO+pAkEMt3oAM36s7Siam9xhaoYLmhfaMbcaXU--cZM9iZG88IyxMMtOgxbQAulIBXFpAexUt3AoO+OoN5NSx8u82dt1WylNUkKAiFnOpREKpcT0b5F1W6pUx-7GbczfLl+gs6l5ttjHuQsdmaXfBQ13Wijsxlj8jxbBpBXsMpmpRRnX4YAvP4-sl+jiVluaNIFhlBdwtUDv9$HY+fEpsy82Z3lLYZUd$8PF3T03F8OvZAljFXifF8n+09foxrbjPXFyfQjjtD+7Ln2i+IEMM0B+gf08NzoczL-H1pmY97ZKZWbJRe$36gqKw-Av-ss7tp9JOAVTMvxslvl9sDduxIzjR+zmN98VzhalKNdE3Mt+9VUzlDR2PaRmIlp1IMh8XnTltMiliwW6O92wwNisRdfoYxanRXOQ2wQ--ppSzN+muAVKsJsGuoZFa3XLtVzEo7hKXpxkPi$3U6bO7ydzcluUxobIbUQWRZ$TKqshd2KPTL5FBAYUx7iUfUP3b7O8AMJQO3AMD3+bb2U7i3PKdSvAMQyOeac3I-eXUwFWSMUdAbRsw7x+$+SuuAzStONxK9bfacUJ3U6MROYnzlo-AlHpdwLx4-tixIhnOosK+jF-lllVKt0Y7R9NNSuUTlwba4DfiZa310m479L31xoS2ma151loaMPbocKB8ZzD86o2oGeL5vFuF58uDHJlrpjtMWI9bvOhapMiTsJQaYLOAe76ZX+jimia1srrmOKEIfuluowIbvP1-0e3MT-T7bbAJf8Pea7d7$aLtLtxMpVpmOevaNPHxt+XoZnxE2$Mf9AyMF8PAe8IDho2w97PnaM2MqytE3KurtHNAWz$d3LvrcilzKsf4HM7kZqMLZgB-KMUm++GAW7zghaKpcMS7iww511vNcfsIMtLtHsd2VbJs1sBsbIU$p-3ATAQAf0WFzh92Sr2SMwpUV3onaOKjPs9t3oInf269jWJnlz0a0uMJKJ0raa0A62WPkI2M42yrSiKtYAoip$O2f3W7efg7VU597o6fpmhsYjxl0x$d-RdmpxqHY3pxSsrriWVkY$nZ0W$tcPOeQa1dYi6ibi-zgW6baA1ogA2MZjfAZ5ksHaOFdbZXaZjp5vcE+qY3tXfpDnsA7H2HyF0FxxRmP48wSAVOU9e85bc1ZksmLKItpjR+eEH84MosnRdclvzr$q0ea3bIjO8bkiUzNiQ2yFtI$9$swm5u+dGFcaeTLSOTOZ-icPRt2sdXUw7D0QXSmiO1IytIMK5KPTv9PUP4aatkQ-VUPYsv4Rx8wMaE8z3Z2ffiFLoU-npAPYQV9tOsqskD2mdm2jsVYFVvNI0bE3H7LZdAmDKIpIQos0g4XMHXQXFpcZoWG-veosXDnD86H60s$aAZAjXRnR-Abomtp93Ky$8Ke8kELJXtxb4$hOu54-Wl6fHwd8kzTswKmpRFuk0eTNrQKZKxNIeBdWRtFWtS4IkiH78$0IvWj2jSR54y2xH0JAeFn-44+rXR-aWoROABYbVjvAKgqVnSex2t9xH$Mh-N7R+L9yP$H0nJoUFP+$p9HvN9nUyAnFuYyvcyiTQrJBJRH3sykKSBP-zbeEf3RilfQBUEs023KlUxUF3MFPG0sjdFHH7BPsOepUZ9+DcAf565d+xvRHXQU-ay7hhyRiZl8iMP6eHHJvEF9sBv6Zkbd3nszB5uFmrkda7wD+4-KmkiT3nJFSxYTErA+LX++VLaVmAyiBN0mnTcK0ftPnOwrFF0tBoQqAWu8WJ8S0oRfHe0H0Ai9QedHH7aglMg4AeE8NEKR7V$oPIhs2EYo3hpDkIEZD3khtA6OXU0gd1EagIAsbIzuAq1OkPyYkpAmIeMN+UPrZngIZcbE3i8Q$F08iQEPkwIFRykwg$V3zyKymyJobKz4LoBN4ayXmL5WMLLKwhyqmVXjT3YWPFpP3PDSiLSi5K1yI6GONuEytliuu7YNcI36jM2yOoccYNM+vzdIJ-JpjJy6hTQGuhF4jqMioeAXBw0nB2I57hfl5T49XrD16sIE3KTjPn+m6sIYPWRosAWcziMWEMGmNlzk-WbrVvSe84FGVNP0AanQQAZE6v6-k81yS8SiPwSz4Kpmi+arPp$vVwjflJsM69aMDFRSJVUP+SxKrqxfgcV0rn8rTIBbAExuV+HR1l+KcGqJYG08dS3U3ZHDHGYYcFTNhN+iGQiVef8mV4rHvJPRNw$P$TXpFe8bavxTf+hDnN1cMFYqLgx+aqI7+mN-MxF8SOGzchzyqVIr0ZnLimXuKPbog23dBNabJGbcqNp1XW1oEckNAx4f0AZng12z7e$d2uB3MuVGkllU83XjUe1kuQ00uhW$3BNkNbhM$lHY8fiZnYFX+0QiMoGhVqRLVEFUU7rMXN33G32$iMLu0UUZrDrPbMMsbhhmxJRXDAwGHmT4E5GLZAT1W2p5Y6ehLSHBVgA-bTZmEIGUEiBJZYZ$a0ZQZ0$XdeaQPmiHyIWJsyl$LN4VfJP2lLPtbuXIOhXDO0O9A5g7cStMJMLUJtBx2I6TzPF146bWsEatMBQLbPciZaXdfI0Zb3lSsDmdFHyts79fqJe$V34Mx-Qe8DOmfFpIEVy8iZ5wPKMixllQz2Q11K3PM1rM68TRBdXYAAl0VIuvvJjW$SmIZ7RQmNxWtm5rFA0m3-xx8A1jd9fALJiw1AYe8jAeE0n9zFnvTlQBZnVzcFc1vaiQ8g7jGhb9NRxWiFoa9GvmP1Adi3NXIy0vRQ1A$R4qAi$7ht3g1pA5xFlUyVxAc8FAAF3ifNAKvVgKx0WfSvPgM85GGR1katIt02V1AcltnHtUbFJu03rvbpKr9xh$jKgHlpApvDXXR8pEjiTEHFqxWmvmgRNJApULZrxQHYg8kAP$IXrwsDiJvQii788syv+9rKqiP5lIAphHQ$vbtpUuGsyAdtNlSbFMv8ULjHQtra-Z9viL373RiU2xrlf-9rX572rePMoZ7-F-Xv2rn6TU46eoXStivrPFMaks0Z39diFzHtsivj8E92wzxRoZLbXAE9m20gg7jWEo-lgPj9AgjwBfohIQePw7X5NdYP8lv5aKN3KItFDAEQIrHA+MfJSd-ZiOvpEYtM8UXvwxLF2xm8R7L6v17QrgtyAuwubA6rzAUbaS0phSg+xUp6vo7Wk9oXeQPpBAR4RdZlb3pgR6vvUiVb8iOQqduteYsdbDvL94rHx6iN88oJGWepAl17TdusVf3hv5NL-rvfKi8wNtNxpvAGzvEJ9oMapol3vx2V+ETlNt-8YprZ8e9Bj$PMjvSD9Qfvli25nRhAAQXdv8wJ8ZWL8S-i+wRFcks7+dUuEYxwHSiF7TQ8tXGQRWXyLS0kQUi+w7glH8AX2ubviSulR3gI8sgKEFicljRjXNmAysidIr$AMBGp-MhnxQg9im7KUrDsHA1g$letTo0G-oV-AaDKNK7ux9ztKiNaZiH2UbIcR4gBRERnPa7ri7AE0VolKsZitUkxEs4FM8diqvXxNtoNHWgMub9xtJFg6sMvx8iVE9prVbAfvDKmsHQN53JXzZWAPQTRxgDi5ohnAo-rVcrrNulImUnFyS9A4bT2XcxE-FiNEbAs+vi8c8mVFjPMEwnWAh-PtWEl7IW8+ApqIZMR7xy+hJVq-sEDbFtsRO2tw3tvAEMNl98NWV-tM9EKtxujzayA00XR6KvriZh-IFiXE6Kvtn1+PQblNtgwKVSY-4-SAHzNtZnU6XBn4GgExKKfG50u-1A6l4DFzlSDBQVAmt9iaA-xDtvkV0MAEnm0kbM7y9oAhrOZWTvcSaZV2478x9xhacUMWZPKQ9HBsmcO39ZyAFShthlNiAHjLDYru7DRD9kpi5LgiGchFXuAK9QDZ7D9m3oiwOjhI9wW4KXPqgaiHIA2qA$6QsNYlMOQiQ2cnMEDKZ-mx$9D$mb2v8jnyMDvTA$qGx95nsaoZYFxAsVLd9AE6vWQ6Zal2ZsYFSWhhlIREal0ia9XxAAvFxxn7uDrgUutr2gpsxsj0rFWTHp-53riR9xgTT6aUN83LnsM8SV583A4llZWsxsX-vvxLJy+9GJ1ATpmJldTtlUQm-Lm9vM$uASFmeY6lxJFLWlWWAE02KFKNS9eSLiADwIEK2xsDgHX9QJpI2ZUOvlcFaQuZ-x4l-KU-FApIxpBx6lEDE-1vN8t1o7ZWSrbLVspqRe+vJsk-FiWI+JY2xV$o$fALNqRjXaZ-T-Gva+ZKoOGpsDtMvRMqRIWfNmzmMdzK1N8KTpAbQdAkbyZFMUW9+AXY8E1oZS3W8Br9SnIqRmSQiL9-kV3izMIWAZQMFVkrEUMefZqsSgxbi3XMzgLkW8SHki32WtbUwQg$2rDxE8OMnxabSUx6zcAAih7hatj-MgzKq6AE9chew9gHxsxuFL7NWVOAqlt$LFuvmWcxi3imipcZd9wczgeSAKFmuJ8jEzlyRMRu9AP95l0i52EjaeDBvZK8ldMczhEQoAZGTMyvxkUqWp77E$ai$u+x4$Y$xtuUDm3osXUpSqx5lb2TIjE9xvWx+lyALSQgsysacR7Ex-lQYW57iA5lhwXI8tQw1VBf3jNacjbYG$vbTphpXAut8enST43R8nlIn0Ar0319O88Ssg8XmFQap+8waOM9hSIbGR3xg4NhWQDEbUAX8XzF$usi3In3+MqxAm0uDTFRH0pV0A3-+Uyco1qGFuieL89oEOt-iY+T0gq$iguWrp6aunaBt60ovySvO-LL7SqlFHGwiiL3BTN8AsMDA+zYDDu9l9LFO8XHKdS7-Ec016K+zOcgL$Xpep9dBzOcXTcqIcFhWW5KGDJmrM71eiupG40Gm4b-Abt-+Ki86m+xxWSp45+al6NSkSMud2vYeu7r6cV1qw6dW5YGDSvVM99RjQbVVNgbd1lpVy91XxYMWvpGw2ioL0KDdxR56pIA--vRUybhImRN3ZZXIbcbmHT+0b-Q9obDrain+Z7ShtxA4Bn3fd$6a4gQP5XU-$ExrM$0JNJ1P-EPv4Qty5cZVn3q2rALBA7UZcXz5m8gnnWAS735-JF8AK60lYxXwFoSBz3g8XSB75lKWoR9xsQ$WS8-948ia60T$mURHW9GvnMj8r6Sn--SPaoxwpfNt6EapWEo7y6$5UJaqSByM$0TIDZf-69sesOWBi5uu-glcwYAGdAWc5A68tEHAId9IUPgwxTkmh-GmfxHw$2UEFOcVm-UsbLMiIo0XttW8a-2poIxjVJDbUij5F8ITxIRbY1eFDFREF2w5iFtT1hFNA4ND2fju4dm0vI+RD$DKbOdSjlIfE9-iNvvIO8o3HWqm+D9mDw9w3+sDPfXc31ZAOZoJ08QmAFANNoFUJ0kDKIXDXShzgzlKfL3IyGwS7giAbYdgTpjAOKrlvH+6cWmg9J1MOez+VW5lLAaxakuVm4usRb9Sx9uWXDSv$KI2IAF7jSZy0d-9A0fLN$Ett1P-UNEagwAEY-d$AoUVU$EAz9$cf3UplcaJe1M0lU3ppdDoYK6-sEZvAqsD3WssDWuhvE9GbIgSsi3uZi0b4zXGL$FBM1rOUPaWpqMXAprYM88YYWhASxgclNj7P+Dszhdga3yFeDfN9TDjqqAAUymx8wdYGF0Y5jjhmB0BffAwjlXOUOYiBKtcclB2j3aUUD9dAf2KxyUo7R5JxB$IkWJYpi-T+gv53fWwoYnUvnmjJ3c8LYfLZTDFiq3JwSyosRyf6MA1+tXYov8yVRuxB7pBNDhL+AwAWB9pV0p$lufIbWBA6M+anruf9Ar7Rjw9aGSu$gqxlZp2Y+fuivEjYYhp20geaPfBqaBXpGGFeZIrGcyBsoLEgzRcxVU5BY80GpL0of1jYY8dzv9m0zKwjKBhbF5O+jfm0jKBjdirlywxj$ZJ-ko4HfiIYYhci7Rj2DO+y4NjEbyDPd5gx-4DqqcB2epTO+q6NhqgYOdRZosq6Dru4Bl4MvFjq6DiULB89t9pNjeuaugYp9RtZj0-+lU3Y3SDvgbwtYYjKBP9JvfvGtK8WYYv9zTO+Il+rqb-w7DYYxGQYKUyBRjrrgDzMfTNz-O3fj3ty7KNoVAO9GLIgIA-Nnr-HsbVgch8YNnZ-xwOVFteqmSq1-SSbwFmIKYuAVYFAQgHmXM2Iqk-BN-kHEqYh-uy0Uo7EHg+xeEuYKOH+Q+rGpf4qQ0$SbQF3jr7AnPBym7QH3GdYTb70iFeGY3G9KQqN08FeXT8R2SrjMFNFcE31wJ8iowDLj5af+w9e3u5Z3jDYHKIh$PnxB2+6ZvgIXfEooDSbSMKDRmKjn00abB0xQ-QftprD$2gugcmbekUdGz+cupwjzfZnTDRoD3nWRnluUBmQszXYYRb2pE$1Ksq3ODqe8Bo1BDkLDFrglAJVqiMiHYXK0szVF4YXb0rTkNKEWxW0HxliANVm2l7-0gM0R8Say9p1r9o8ayu9sbK9cj8JAX5rIhqJIFUAWioORyeWhDFJML5XF8ua8-dx5zBtlzQ$+pV2r+A3FTiZAAAQ24z6dlQw+2ZIHAJAAdpZAxrFxGzkl988z8eS8xP8wl+r8g-B9YR9Ak++8sVyMXxgTxY-TzxAAlKiKMH2WpvLStrdi38XiQ++88gb2A13fKs3zKlvx4tGx7xWlQ+vGvArr8oUFl$ZzwJrAfaeAhjQbvivdTAA9i8AkiAADhcjXhI8+IQaet8cG5e9JgTMydis08OcwvdTgtOhxzv-2AvyOhgqILrsPKiIy6hgX8i90Asxfl8fYu4EzqRcRLAfJY9QAA0reTJy6hfiSpA2xKi4zmefnjtr29GbEAvahRDBvaJXR88zAaD079wMvjyR3AAA-IJifiD$+dIxAOuUtFHIAU$j9QMvzlsHIB0$Gj9Prq3XNFA8E8yV$xItO5ZWW0WwJd9KxklF1aLrgbplIt48upfZABFPiWxbR3L35vL9-cQm-EFpG8laMUvNBsP5EZRm+tsITx$afJot8d9Wtyka$OBjDLI9AJ6ttaRcUQ4vzdi1jrxAiLF-jAnPHAkz5NsAhG9yPRxqyz9hjhEBiAyxNAU8LohO2-iItGjjAG-xff2i0iPazZVa0r-XipUt1fhLFsvYKlItnxoU9i9xvx8pkyAKFKwldrXi2QYjGb-ATB9diPr7N0euwm-8BvPxAAMNn2O7ItPz4eaQ85BVpOG6zeOO4GUjhJyk4z2nF6Y5evWeltU$dZ$DuQiPAA69OwVxAvHhiP+Q7a-IXN7aiAsXgKG9Mrew9HsaiUv18TxAAu1AA"}},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 22 Jun 2025 04:26:55 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iHx%2F%2Fl8WOk4OS5ScAdZ8jjlUOdOfNejoGeobc%2Ffx5xPEa8cbGDVL9%2F55VtJnqGF7hQPAv06MPYCWCgXLtfDnOli3WFoeZcNbLZG3yw%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nServer: cloudflare\r\nCF-RAY: 9538fd82edf556c5-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24051,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (24050)","md5":"5e8c69a459a691b5d1b9be442332c87d","sha1":"f24dd1ad7c9080575d92a9a9a2c42620725ef836","sha256":"84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091","sha512":"6db74b262d717916de0b0b600eead2cc6a10e52a9e26d701fae761fcbc931f35f251553669a92be3b524f380f32e62ac6ad572bea23c78965228ce9efb92ed42","ssdeep":"192:VuR/6okgTQwq23gGM8lUR9YRGQ2BwoX6zp+1+nDT1FvxKSI7/UsV7MSE6XZ2dKzk:JwV+oUcoQJpdf1dxKSI7/Ue7ZX2qk","tlshash":"86b21323e5f5381a2516a13ca08a92dc69356073f7f30e9eb985d06cd78dd791f226c3","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-10T12:55:43.148368Z","times_seen":419525,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.824558+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/styles/cf.errors.css\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/css\",\"http_refer\":\"http://bdmusic23.buzz/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":920},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":10,\"bytes_toserver\":1298,\"bytes_toclient\":8012,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/cdn-cgi/images/browser-bar.png?1376755637","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"http://bdmusic23.buzz/","date":"2025-06-22T04:26:55.860Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /cdn-cgi/images/browser-bar.png?1376755637 HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 22 Jun 2025 04:26:55 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QUe5Jqz9kLnShkIjSiwRzZxzyFofdyvZUwE3ZTrn%2BzidkOMdpczRD4nQjQzH%2FxOckGTsNU1A%2BrIWblpuHgTDwy8Spu1DHQq2amMFzw%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9538fd831e0c56c5-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":715,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 960 x 53, 8-bit colormap, non-interlaced","md5":"226dcb8f6144bdaafdfbd8f2f354be64","sha1":"3785cc5b3bf52f8e398177b0ff1020b24aa86b8c","sha256":"8c873472f4925d5d47521db4d52532d2983e9cb1bde8b43143a6cc6db56c35db","sha512":"ed898b12c4895f7aceaab443c1071e6376db71b4dfdbd769f5f3be71d562438a18b5e5dc36dd7cc610926e380603a894b2e81df4302680c736a412bfd3360d3a","ssdeep":"","tlshash":"a5014ec4a009bcb009f21b37859cb601c07175098e23f023045eb9b22b7accf83a8f92","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-10T12:55:43.149798Z","times_seen":158476,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.862715+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":2,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/images/browser-bar.png?1376755637\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"image/png\",\"http_refer\":\"http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":725},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":14,\"pkts_toclient\":12,\"bytes_toserver\":2105,\"bytes_toclient\":9374,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/cdn-cgi/images/cf-no-screenshot-error.png","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"http://bdmusic23.buzz/","date":"2025-06-22T04:26:55.862Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /cdn-cgi/images/cf-no-screenshot-error.png HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 22 Jun 2025 04:26:55 GMT\r\nContent-Type: image/png\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KMCPn3aQo%2BYl1XaqsS3iPrQx653FCqguvbLzMoNG4UN8Kiiqv9hkdtQ1rzxfhKz4%2F34pTeZA%2FCRdWtfr9B6Z%2FRWEJcFYwdsKOrsJwg%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nServer: cloudflare\r\nCF-RAY: 9538fd8329f37130-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3213,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 178 x 175, 8-bit colormap, non-interlaced","md5":"0d768cbc261841d3affc933b9ac3130e","sha1":"aff136a4c761e1df1ada7e5d9a6ed0ebea74a4b7","sha256":"1c53772285052e52bb7c12ad46a85a55747ed7bf66963fe1993fcef91ff5b0d0","sha512":"ce5b1bbb8cf6b0c3d1fa146d1700db2300abd6f2bdbe43ecaac6aebc911be6e1bcd2f8c6704a2cfa67bbb45598793ddec017e05c2c37ce387293aae08e7c342f","ssdeep":"","tlshash":"7561f7f185012a2a2fb7dc8552ecc3a810166b7b353744e73ba46d344cde7781325f59","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-10T12:55:43.144704Z","times_seen":158481,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":59100,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.873370+0000\",\"flow_id\":154900244670138,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":59100,\"dest_ip\":\"172.67.182.47\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/cdn-cgi/images/cf-no-screenshot-error.png\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"image/png\",\"http_refer\":\"http://bdmusic23.buzz/cdn-cgi/styles/cf.errors.css\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":943},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":683,\"bytes_toclient\":4134,\"start\":\"2025-06-22T04:26:55.861882+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"bdmusic23.buzz/favicon.ico","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"http://bdmusic23.buzz/","date":"2025-06-22T04:26:55.879Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://bdmusic23.buzz/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 403 Forbidden\r\nDate: Sun, 22 Jun 2025 04:26:55 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Frame-Options: SAMEORIGIN\r\nVary: accept-encoding\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BOHSwV604qxuULCvthihiIaL%2Fbk9BQMump60xJlnCqHS1mCsTGkTq07QVGbtG%2Fb28P50PpvXJyr%2FNfM5RCdcjs9PuiqwfV1zi1ra6Q%3D%3D\"}]}\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nContent-Encoding: gzip\r\nServer: cloudflare\r\nCF-RAY: 9538fd833a077130-OSL\r\nalt-svc: h2=\":443\"; ma=60\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":4548,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (396)","md5":"96fadfd4b4c2401e086b350070013b66","sha1":"e0377d0a64ed2e42a2e0e9bc953238d3cd85dccd","sha256":"779f0b9ef215055dde79534f567cf8b3e37c780308e7d26d6f4cfd91e45f13d3","sha512":"b332dda7d74af2d6a3cb9ce88ec35eea147a2d5efebb281fa1477b7cbcd321f33b909d3b15709ef0d2a9c7fdbf40f81e269532338d2a4510f56ae476559ef9ad","ssdeep":"96:1j9jwIjYj5jDK/D5DMFWC8JzZqXKHvpIkdll7RLlvaQxvbK:1j9jhjYj9K/VoWnSaHvFdll71lCejK","tlshash":"f8917426bafd217e10a3816225ed63497eb0c553c6ab05a076acc1391f9ff59fe171c0","first_seen":"2025-06-22T04:27:18.77803Z","last_seen":"2025-06-22T04:27:18.77803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"172.67.182.47","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":59100,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.887906+0000\",\"flow_id\":154900244670138,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":59100,\"dest_ip\":\"172.67.182.47\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":1,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/favicon.ico\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_refer\":\"http://bdmusic23.buzz/\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":1760},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":9,\"pkts_toclient\":10,\"bytes_toserver\":1378,\"bytes_toclient\":6772,\"start\":\"2025-06-22T04:26:55.861882+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bdmusic23.buzz/","fqdn":"bdmusic23.buzz","domain":"bdmusic23.buzz","tld":"buzz"},"ip":{"addr":"104.21.83.215","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-06-22T04:26:55.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bdmusic23.buzz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 26 Apr 2025 23:43:21 GMT","end":"Sat, 26 Jul 2025 00:42:03 GMT"},"fingerprint":{"sha1":"97:77:68:E4:C9:C9:32:77:98:CF:88:E0:20:A4:74:8D:A3:C5:5D:D1","sha256":"4F:42:F8:20:D5:23:91:75:52:C2:C7:EA:9A:54:4A:73:1C:CF:CB:2A:92:7C:4A:C9:F2:23:AD:37:59:10:6B:F3"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bdmusic23.buzz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Sun, 22 Jun 2025 04:26:55 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nx-frame-options: SAMEORIGIN\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1QN1rnqzeMWmcycNADkr8rIJCG1VlQecDtL3FsQdBpgFmYh0Jmvcga6koOKOpjNsvq%2B3NllYoFEGwKcCB5VpUY99nnnt4XmJ7X5pPg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9538fd813811b500-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":4548,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (396)","md5":"1cc18818a2761717350cfefa8e1e6e24","sha1":"1526362e5033ce70dfa3fb10b74b8e6870494cb3","sha256":"1fc5574f9857f59b942e1b0627e4924e1d47d76d50c0189e12d47ef0765e2aef","sha512":"c03e44d0d81f0b9bdb688e90d96673359c796c95e1af08bc0c940a9d900a14edd26593a2946caf46fed5502c47814618df00f2f0cb9f4b24ec7c75d7033b0ac9","ssdeep":"96:1j9jwIjYj5jDK/D5DMFWC8JzZqXKHvpIkdll7RLlvaQxvbK:1j9jhjYj9K/VoWnSaHvFdll71lCejK","tlshash":"ec917426bafd217e10a3816225ec63497ea0c513c6ab05a076acc1391f9ff59fe171c0","first_seen":"2025-06-22T04:27:18.779507Z","last_seen":"2025-06-22T04:27:18.779507Z","times_seen":1,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":54,"dns":33,"connect":1,"send":0,"wait":12,"receive":0,"ssl":17},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2025-06-22T04:26:55Z","timestamp":1750566415,"ip_dst":{"addr":"104.21.83.215","port":80,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"172.18.0.14","port":55484,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.buzz domain","source":"{\"timestamp\":\"2025-06-22T04:26:55.731007+0000\",\"flow_id\":853253337117791,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.14\",\"src_port\":55484,\"dest_ip\":\"104.21.83.215\",\"dest_port\":80,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2032991,\"rev\":1,\"signature\":\"ET INFO HTTP Request to a *.buzz domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2021_05_18\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2021_05_18\"]}},\"http\":{\"hostname\":\"bdmusic23.buzz\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":403,\"length\":849},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":671,\"bytes_toclient\":2699,\"start\":\"2025-06-22T04:26:55.717919+0000\"}}"}],"analyzer":null,"urlquery":null}}]}