{"report_id":"c6fa5fee-61fb-460f-84a7-1e8bf225b665","version":6,"status":"done","tags":[],"date":"2026-04-13T22:03:43Z","url":{"schema":"http","addr":"presidentukang.id/gberum/cuchella/","fqdn":"presidentukang.id","domain":"presidentukang.id","tld":"id"},"ip":{"addr":"103.147.154.173","port":0,"asn":138115,"as":"PT Deneva","country":"Indonesia","country_code":"ID"},"final":{"url":{"schema":"https","addr":"sooweala.ru/Km!5TDHRA/$0","fqdn":"sooweala.ru","domain":"sooweala.ru","tld":"ru"},"title":"sooweala.ru/Km!5TDHRA/$0","dom":{"size":4875,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (4873), with no line terminators","md5":"80e2d491058beea1a4731c77445e05e1","sha1":"63c9974c789a61d33db63d307abdcb283ac805fb","sha256":"b9b1c98dbd28ef0343dca12af16e176349f85ed9f2d505c8af2b1ec72ec74d07","sha512":"48b1ed3dc0edb0f52cf887733a7372cfcceeb934d54b698979ce965ee3adb987cfa4875aca0999e92cfdc5eea8e9bf3189fded80f6a0ff80980205383b357230","ssdeep":"96:tAXguAewao8oyHxHe4WEIVufo5MalS/FTQsCMDIiCOsIpOUw+HgcnkHjZvzPQ2fu:wAewftyHxYJVufW8tEbMDIirJtw0gpDW","tlshash":"d7a1d667b2130c3219bb93a638f1c79939344a14f61268158dccb134c19eec6a2bfe95","dom_hash":"domhashab8b80a8180ae329fea9f6ce5ac257f4","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"presidentukang.id/gberum/cuchella/","fqdn":"presidentukang.id","domain":"presidentukang.id","tld":"id"},"ip":{"addr":"103.147.154.173","port":0,"asn":138115,"as":"PT Deneva","country":"Indonesia","country_code":"ID"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-18T22:03:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"sooweala.ru","ip":{"addr":"208.115.228.92","port":443,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"domain_registered":"2026-03-28","domain_rank":0,"first_seen":"2026-04-13T22:03:43.80707Z","last_seen":"2026-04-13T22:03:43.80707Z","alert_count":0,"request_count":2,"received_data":17529,"sent_data":1693,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"api.ipapi.is","ip":{"addr":"49.12.45.212","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2022-10-06","domain_rank":592375,"first_seen":"2023-07-07T10:51:10Z","last_seen":"2026-04-07T15:36:21.719794Z","alert_count":0,"request_count":1,"received_data":1930,"sent_data":422,"comment":"","tags":null,"fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"presidentukang.id","ip":{"addr":"103.147.154.173","port":443,"asn":138115,"as":"PT Deneva","country":"Indonesia","country_code":"ID"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":2865,"sent_data":959,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"sooweala.ru/Km!5TDHRA/$0","fqdn":"sooweala.ru","domain":"sooweala.ru","tld":"ru"},"ip":{"addr":"208.115.228.92","port":443,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"5fb90ce7997327a4683df9c1cb0f5d39","sha1":"299f3de2997c2efeac0b94bf9fe0e902d4fbfe3c","sha256":"35cfa9cb632ee274ea03f433f65e10426d01b9436b12cf104409df5880b3203c","sha512":"4859fbc46c6d28f0ff4e5386e14a30694274d947c259a535271bdc22a5bbc075350c4292bc70151e031c179af631968f1e4ead9e6d835637dd9ec2830791865d","ssdeep":"","tlshash":"9e51b55bf29719320eba567b3c76c3957d39081478115452cc8cd924803df89e2bfc81","size":2704,"data":"","first_seen":"2026-04-13T22:03:49.222639Z","last_seen":"2026-04-13T22:03:49.222639Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"presidentukang.id/gberum/cuchella/","fqdn":"presidentukang.id","domain":"presidentukang.id","tld":"id"},"ip":{"addr":"103.147.154.173","port":443,"asn":138115,"as":"PT Deneva","country":"Indonesia","country_code":"ID"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-13T22:03:21.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.presidentukang.id","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 17 Mar 2026 06:26:21 GMT","end":"Mon, 15 Jun 2026 06:26:20 GMT"},"fingerprint":{"sha1":"5C:82:D5:C6:8B:85:54:39:4D:C6:6B:60:F6:03:FC:EA:9B:CD:F9:1D","sha256":"89:F6:F5:1E:AF:BE:D4:2D:31:A5:80:37:67:5B:1F:D4:B6:73:FE:6D:4C:17:7C:15:70:FA:46:8D:79:94:3A:88"}}},"request":{"raw":"GET /gberum/cuchella/ HTTP/1.1\r\nHost: presidentukang.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 13 Apr 2026 22:03:21 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Mon, 13 Apr 2026 19:48:36 GMT\r\nvary: Accept-Encoding, Accept-Encoding\r\nserver: DomaiNesia\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-dynamic-cache: REVALIDATED\r\nalt-svc: h3-27=\":443\"; ma=86400, h3-28=\":443\"; ma=86400, h3-29=\":443\"; ma=86400, h3=\":443\"; ma=86400\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1068,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"62277f356b532e196ec3064000698692","sha1":"63a626e52b6ac3c59cb669b30b0202d423c9c5e6","sha256":"60e1087e02ff6d80f5caf4a70a5531fec0874c734b19880c96261c5ae6b0f25d","sha512":"8e27cff533b4a4749eb80d323916376172f1eebd50e080e3621b27e44aa85057a6507282d2d2471ef7ba6b95c74a99141f8bfc28d7b61f305cdc4ce5818e770f","ssdeep":"","tlshash":"a011abd11872760f0b74a331f14ae3d4424147ecba36e5bef46865a3278ed4c8672f80","first_seen":"2026-04-13T22:03:49.218917Z","last_seen":"2026-04-13T22:03:49.218917Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1130,"timings":{"blocked":462,"dns":81,"connect":185,"send":0,"wait":205,"receive":0,"ssl":193},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sooweala.ru/Km!5TDHRA/$0","fqdn":"sooweala.ru","domain":"sooweala.ru","tld":"ru"},"ip":{"addr":"208.115.228.92","port":443,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-13T22:03:22.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sooweala.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 19:44:47 GMT","end":"Sun, 28 Jun 2026 19:44:46 GMT"},"fingerprint":{"sha1":"FA:22:AE:A7:F8:BC:BE:6D:B8:31:86:03:14:32:F9:4A:2C:FD:DF:4C","sha256":"8E:BC:14:AE:5D:8E:B2:CC:37:BC:B0:8E:E5:16:44:29:38:CC:A3:BA:59:91:D1:AD:67:79:CE:18:52:5D:C8:DF"}}},"request":{"raw":"GET /Km!5TDHRA/$0 HTTP/1.1\r\nHost: sooweala.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://presidentukang.id/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 13 Apr 2026 22:03:23 GMT\r\nServer: cloudflare\r\nContent-Type: text/html; charset=UTF-8\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nCache-Control: no-cache, private\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o8%2B1ZjOlmrDxr9IelGzxabO6KoYQXeRF2DB%2BqvZa95VtQWftWiCKr5wraz99fJU0KHDeT2tVtQ5QKsNwdWyF0wO81G4R5QNYGy9%2BzIz68JoRGYJT%2F43KweXPJNs%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nContent-Encoding: br\r\nCF-RAY: 9ebdc2ada8e2dddf-IAD\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IktuRkIvT3o2dFZMQ1BTNHFKWHBLMkE9PSIsInZhbHVlIjoiK1NFTTA4NThqdjg5VGtoREVXUTUzelQ3R25xWUQzSTIrRG0vOHVhaWQrNm9FZkJUNm05TUU1MjlOa2ptR09HOTdVYUVOZGkrVjRvL0dUZDZMSTVXSFh3N2t3bVFHREFINVI2TmNnZFJoL0RKcDZEVlJ6d1p0alhNRndsaHFINi8iLCJtYWMiOiI0MTllYzgwMTliMzhhMGM2MjlmOTFiNzUyNTZiN2ZjMjg2MTMwMzZkMzMwNzAzMGRiOTY0NTYwZThlMmViYWE1IiwidGFnIjoiIn0%3D; expires=Tue, 14-Apr-2026 00:03:23 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6InRSOFpzWDhVVnlPajNMS2pabVFzclE9PSIsInZhbHVlIjoidW9XWENuamM3N1VnU2pyRjdYK1NoL0F0RzNnYzMrRXZBK1pBNVNWQmxtNC9QSWlFYXE3cXY2V1pmZUxXaUM1VzBKKzVQSlpSaXlkWEZIZDJ2RFBQdTlURk9vWmc5dEVyaVdxQTAxZzVGZ1Z3VjR4U1ozSHA4M0xqa2g2b1JpZ1giLCJtYWMiOiIyMzdhMmU4ZTA4ZjdiZjY4YjgwYTIxNWQ4ZGIxNDlhMDRkM2QwOGUxZWY2YWI2MGUwZGY0N2Q3NTNiYmJmNzg0IiwidGFnIjoiIn0%3D; expires=Tue, 14-Apr-2026 00:03:23 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4547,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (4545), with no line terminators","md5":"1ba961abf3cbac6fa33ff1a97d9e893d","sha1":"ce045629582ac179e77e6f6dba947b4801e2f734","sha256":"cca835311c2afbffa285075a752860e4903333c68b62196d32322c9fd11bcfc8","sha512":"52c3e1b5e432925f809cfa02095b3f44b5c3ea471e6af18608973b76ab626220bdb2f6fe4b49f974e352fedfe972195d94635ad4959e077ac6ac30c73af16583","ssdeep":"96:dguAewao8oyHxHS4UVufo5MalS/FTQsCMDIiCOsIpOUw+HgcnkHjZvzPQ2f4:1AewftyHxOVufW8tEbMDIirJtw0gpDZK","tlshash":"c691f867b20214321ebb92663cf1c7ca79384524f52268658cccb524c19dfc6e2bfe51","first_seen":"2026-04-13T22:03:49.219798Z","last_seen":"2026-04-13T22:03:49.219798Z","times_seen":1,"resource_available":true,"data":null}},"time_used":2381,"timings":{"blocked":836,"dns":358,"connect":164,"send":0,"wait":704,"receive":1,"ssl":315},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"presidentukang.id/favicon.ico","fqdn":"presidentukang.id","domain":"presidentukang.id","tld":"id"},"ip":{"addr":"103.147.154.173","port":443,"asn":138115,"as":"PT Deneva","country":"Indonesia","country_code":"ID"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://presidentukang.id/gberum/cuchella/","date":"2026-04-13T22:03:22.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.presidentukang.id","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 17 Mar 2026 06:26:21 GMT","end":"Mon, 15 Jun 2026 06:26:20 GMT"},"fingerprint":{"sha1":"5C:82:D5:C6:8B:85:54:39:4D:C6:6B:60:F6:03:FC:EA:9B:CD:F9:1D","sha256":"89:F6:F5:1E:AF:BE:D4:2D:31:A5:80:37:67:5B:1F:D4:B6:73:FE:6D:4C:17:7C:15:70:FA:46:8D:79:94:3A:88"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: presidentukang.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://presidentukang.id/gberum/cuchella/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 13 Apr 2026 22:03:22 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nserver: DomaiNesia\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":1162,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (474)","md5":"3cc9fe14b698ca31b9f34426d4ecbb83","sha1":"4ccc0c0a6d0833aa729f229e36c0fd37c6305c38","sha256":"b08ca19fbaaced5903dac256d9e013c5e2c3a0779341c657901925274ab74692","sha512":"67f454d72a77a87578edc99cfdcbadefebf65fb9badb498a64fea2b5eb62a7bb98db49e01c5be87acd997b665094e06505990e656baa231e661b0123c2875bce","ssdeep":"","tlshash":"8621961750e5a20e60539036b5c1a204ee40994b932920e1f89fcb56af8d79782f3e3c","first_seen":"2025-05-13T10:01:31.465165Z","last_seen":"2026-04-13T22:03:49.220703Z","times_seen":79,"resource_available":false,"data":null}},"time_used":202,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":202,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.ipapi.is/","fqdn":"api.ipapi.is","domain":"ipapi.is","tld":"is"},"ip":{"addr":"49.12.45.212","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://sooweala.ru/Km!5TDHRA/$0","date":"2026-04-13T22:03:23.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.ipapi.is","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 12:50:26 GMT","end":"Mon, 08 Jun 2026 12:50:25 GMT"},"fingerprint":{"sha1":"89:B9:BB:CD:BA:A3:69:F6:93:B7:E8:28:AC:BC:EE:E5:23:6D:C7:53","sha256":"FF:6B:9F:79:6F:09:D7:F7:2E:1E:92:91:E8:0D:46:A5:B7:C2:2E:0B:08:C3:E6:54:37:E0:8D:F6:C2:9F:97:A9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api.ipapi.is\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://sooweala.ru/\r\nOrigin: https://sooweala.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Apr 2026 22:03:23 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\netag: W/\"671-YiYSLR3GMLbJhf6G31M4e5rUCKc\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1649,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"78efed4fe9adfc0f9609f3ac1bdeb612","sha1":"6226122d1dc630b6c985fe86df53387b9ad408a7","sha256":"0e9d719d27e11b9b81c5b18d6e29161d5aa0942769463c686d1154f8d8ca146d","sha512":"8e79101279c2f8a70aebf74462384d5c3d94112641f63d63bc6582913e78bce6dcc5e324f9b0d364beec891cc24168fa9594ed9f0cd07d76d61cdd6078b9e03f","ssdeep":"","tlshash":"65313920c4641d371ae8115da8ac1b03722496074e4938197bb2524f1f8ce7fb0fb7ae","first_seen":"2026-04-13T22:03:49.221253Z","last_seen":"2026-04-13T22:03:49.221253Z","times_seen":1,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":117,"dns":37,"connect":34,"send":0,"wait":36,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sooweala.ru/favicon.ico","fqdn":"sooweala.ru","domain":"sooweala.ru","tld":"ru"},"ip":{"addr":"208.115.228.92","port":443,"asn":46475,"as":"LIMESTONENETWORKS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sooweala.ru/Km!5TDHRA/$0","date":"2026-04-13T22:03:23.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sooweala.ru","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 19:44:47 GMT","end":"Sun, 28 Jun 2026 19:44:46 GMT"},"fingerprint":{"sha1":"FA:22:AE:A7:F8:BC:BE:6D:B8:31:86:03:14:32:F9:4A:2C:FD:DF:4C","sha256":"8E:BC:14:AE:5D:8E:B2:CC:37:BC:B0:8E:E5:16:44:29:38:CC:A3:BA:59:91:D1:AD:67:79:CE:18:52:5D:C8:DF"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: sooweala.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://sooweala.ru/Km!5TDHRA/$0\r\nCookie: XSRF-TOKEN=eyJpdiI6IktuRkIvT3o2dFZMQ1BTNHFKWHBLMkE9PSIsInZhbHVlIjoiK1NFTTA4NThqdjg5VGtoREVXUTUzelQ3R25xWUQzSTIrRG0vOHVhaWQrNm9FZkJUNm05TUU1MjlOa2ptR09HOTdVYUVOZGkrVjRvL0dUZDZMSTVXSFh3N2t3bVFHREFINVI2TmNnZFJoL0RKcDZEVlJ6d1p0alhNRndsaHFINi8iLCJtYWMiOiI0MTllYzgwMTliMzhhMGM2MjlmOTFiNzUyNTZiN2ZjMjg2MTMwMzZkMzMwNzAzMGRiOTY0NTYwZThlMmViYWE1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InRSOFpzWDhVVnlPajNMS2pabVFzclE9PSIsInZhbHVlIjoidW9XWENuamM3N1VnU2pyRjdYK1NoL0F0RzNnYzMrRXZBK1pBNVNWQmxtNC9QSWlFYXE3cXY2V1pmZUxXaUM1VzBKKzVQSlpSaXlkWEZIZDJ2RFBQdTlURk9vWmc5dEVyaVdxQTAxZzVGZ1Z3VjR4U1ozSHA4M0xqa2g2b1JpZ1giLCJtYWMiOiIyMzdhMmU4ZTA4ZjdiZjY4YjgwYTIxNWQ4ZGIxNDlhMDRkM2QwOGUxZWY2YWI2MGUwZGY0N2Q3NTNiYmJmNzg0IiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 13 Apr 2026 22:03:24 GMT\r\nServer: cloudflare\r\nContent-Type: text/html; charset=UTF-8\r\nNel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nCache-Control: no-cache, private\r\nReport-To: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9XkVtwrKCS6kOwLbavZXRDAVifXNNHyySc%2F27lC0JiofHjYBaoQQy2VnH5SOythBySjlLVEm%2F7ZHKS9Zl44BZt1qfbK%2B%2B8OIVlNxOS0igxt1T03Ch7CrINnAWsM%3D\"}]}\r\ncf-cache-status: BYPASS\r\nvary: accept-encoding\r\nContent-Encoding: br\r\nCF-RAY: 9ebdc2b36d4fdddf-IAD\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IllTVjRLeVh2cEtrQU54SWNYOWFheXc9PSIsInZhbHVlIjoia1JvclJIRVJkS2VPVEhjSlV5UVhTcUZkUmFRbXIvT3U5TTg5VW5MeDRGbU1zQ0pJYXlKYmI1bTBRaFZ6MUpiOEpZOVgzejlTdnZnT3dsMEtkU041WkxZVWN3MC9qN1dFcTNLcWF2NC9HRHE0dEtSaHFBT3VYNTFBMzNPR3dJaEkiLCJtYWMiOiI3ZTQyYmM1MGM4YzEyNTczYjE3NmMzNDkwOWJjNjgxNmRmNDQyMGJkZDU2YWZiOTYxZmZhYjZmMTA0MTdjZGJmIiwidGFnIjoiIn0%3D; expires=Tue, 14-Apr-2026 00:03:24 GMT; Max-Age=7200; path=/; secure; samesite=none\nlaravel_session=eyJpdiI6IkM4cHhVc3ZVTW5sSUtTaVYyL3lzeVE9PSIsInZhbHVlIjoidFJpN20vNGk5SHRVUS85U0syVmRnTStqM2JJLytBanQrbVViaXE1cXVCdjN5QS9OK25KUG5iTjhXc1ZoeENyMmx4UWQvZXdZd1JHMndIZEZ3TzhyaDJyQ0tPbzVxSVdyaE9nSTNsQlNHMmk3QVZyTzlsbERMRWhtQzFFMEZHS0giLCJtYWMiOiJkODhlYzIzNWIzODhjY2JhZWUyMWMxOWY4YTk4OTRhNDJkZmUyYmZmYzgwN2E2MDkzNWVlNTNkOWZlMDcyMDkxIiwidGFnIjoiIn0%3D; expires=Tue, 14-Apr-2026 00:03:24 GMT; Max-Age=7200; path=/; secure; httponly; samesite=none\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9872,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"4764e848a965e1164f11277a8b81e98e","sha1":"e1e92fcb73c1023a09adbdfd88cdbde45829350a","sha256":"8643af08320ae6d2d7b388d05c1987c7330d650d64d166dd901d9519201a1388","sha512":"c47cdb875ad71b00f57ac0b5f3405146309b951a27ea5167ab0dc5bdb2cd104b406d1f7d7d5b4e1879ca83049e4a5a4429683e14d56a7ffc7d127226270eca04","ssdeep":"192:OY9QIb3CydfoFKsF8VkLRoBt7UNHcKENUkC1qQHcE6+yJoie20SghjN+o4WDNN9x:OY9QI1sFCU0yMhD0SqUovD79x","tlshash":"d012a62261f220676093e5d47fa287172bb4c113d54a8aa17aec0398dfcbdcac89775d","first_seen":"2026-03-13T00:25:08.598393Z","last_seen":"2026-04-15T23:05:29.016844Z","times_seen":246,"resource_available":true,"data":null}},"time_used":289,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}