{"report_id":"caf263a7-7e07-46d8-b637-11466b959dbc","version":6,"status":"done","tags":[],"date":"2026-01-26T01:15:42Z","url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"title":"Welcome!","dom":{"size":5609,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1702)","md5":"b6744e9047beebf9c8d7f06c2472d469","sha1":"56a06b2f215a3139855b4a8830f99e15e84e882e","sha256":"9e060417acd30c08c75f0d50269512d3b42fd1aec87143296a7c7f6481374aa1","sha512":"7b402f8e6999c96e6e09d6f672ec649bc3fc24c2ae56ec40bec516444221d58f742db55e72f3b7f2aef298283307225aee4b468c584933b749822f862939dc24","ssdeep":"96:itd7ptuICJAK/dSW7n7Xrlgjz++fMIShfxem6rOYhvpKXuQhy:itd71e3Oz++fMIcYVKHXuKy","tlshash":"f7c1d72160481e07168382c579a9bb06bab0c532c9870ccc967c91fe7ee7fc6221d2d6","dom_hash":"domhashc109c10d158f4937b977e5648198c213","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-02T01:15:42Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-01-26T01:15:20Z","timestamp":1769390120,"ip_dst":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":47194,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Suspicious Domain (*.icu) in TLS SNI","source":"{\"timestamp\":\"2026-01-26T01:15:20.494319+0000\",\"flow_id\":1003097130820931,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.50\",\"src_port\":47194,\"dest_ip\":\"104.21.72.57\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2026889,\"rev\":4,\"signature\":\"ET INFO Suspicious Domain (*.icu) in TLS SNI\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2019_02_06\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"tls\":{\"sni\":\"baba-zavr.icu\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3448,\"start\":\"2026-01-26T01:15:20.484675+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"baba-zavr.icu","ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-21","domain_rank":0,"first_seen":"2026-01-25T23:50:41.565824Z","last_seen":"2026-01-25T23:50:41.565824Z","alert_count":0,"request_count":5,"received_data":2781138,"sent_data":2519,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AngularJS","description":"AngularJS is a JavaScript-based open-source web application framework led by the Angular Team at Google.","website":"https://angularjs.org","common_platform_enumeration":"cpe:2.3:a:angularjs:angular.js:*:*:*:*:*:*:*:*","icon":"AngularJS.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"db64df07f73b0e6ed0fa21845368fb94","sha1":"4d6883426aa11c25442c697213a6eed3813d92a1","sha256":"5ff680afc7642b605b42c974d4a8d7621dce83a72ee30b8bba0eb3f525e78de5","sha512":"9a3a8360e912013cca54ba8b1547f7d56d2b229f1d1d5b272bdd487d0495aaf7b6aba449e3fe3a0310f9251ae235ca9941d81a4b002435fc5fe156274a6da517","ssdeep":"","tlshash":"99d0224a38c9bc34934350c4b83f9c44b8d6693084ccc829edc9c1a826b3036a02de1e","size":196,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.474729Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e3c749671b0fcb5499c114d3306d298d","sha1":"58c481d1e4f9472998f226aeab21748cd52afdcb","sha256":"9deb826a3a4493fd987e23385e4aa68d5d2bd86928f59f8642d9b87bd4c20529","sha512":"d776f666258091d2feb84fce21f8641508e38553c2c2c993b696362cf0ec52b36dd6866ab2c3693edb0c22cb2b0ed1211170106cb6af38f906def98458c42dee","ssdeep":"","tlshash":"51f0dd813bbcc91112fca0a039efe9a2a41ddd3727515aa1c7e1c69d287740ea07a30f","size":623,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.475579Z","times_seen":439,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/assets/login.js?1759908675","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"400b1f71117c8d47683993cc3f351385","sha1":"8af1cc5c6fabce9e562f34a8f618c1117daedba2","sha256":"049cfde1d0a773924e855a9e818022a943c3645e77a29094cfde9244d0c40849","sha512":"b4481e6808471936d5a969c53ea5e726405a3d351796e2a633059a3ab8aa97e87948dc049cb09c4261cc7f1b3280aa0861b095db33c340761892c9e4e75c5ffd","ssdeep":"12288:w+PPSSN9ShYRrl50s9eCX8RzyClQ+jFFQVRV+34zZrgtdjdUdXg8HOa/z:PPKmrl2QeCX8HlpFiVj+34zZrgD8/z","tlshash":"567519cd72c2b0a243e360f5402f640af33b6919684e8510f265e9d6bc79a5e9277f3d","size":1653349,"data":"","first_seen":"2025-05-22T10:29:21.021919Z","last_seen":"2026-06-07T04:27:02.513814Z","times_seen":161,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"ce5bfaa9c1bcd118a73b3de92e1af506","sha1":"4c085d2c683460ca4621176bcdac69837c461539","sha256":"d2ca8f4d6829d99e48b101c262d37b1f37f4770cd9270c5f29724fbb953e24f1","sha512":"69bbb1be9c42396ac0cd0a1ae0fb8d0ce13533d22d44c23464a4189caeee636593a515a3503b2b96279496f6fab32a8ee503c3ca44d9bb6ffdd5c3b329221ff9","ssdeep":"","tlshash":"8ee02ba53e55a816079110f0acbf8c55d86beeb04648cc16ca83c1b00d73b24d939b9c","size":398,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.485716Z","times_seen":544,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"3b6bddac2bf59c3df9f4ba3284448777","sha1":"563904add36607e5ce71a913aeb9392c20159fbf","sha256":"bd1307d463840f489a97664ee167090c912336c84fbb8f3beca927cc553fa62f","sha512":"85543c594a5ce28e2745909621f2a157064be5e1676acf832a26c6d9cab9a8d6635002618fe4fc05b72ec5933d1c68ed319345380f4a54ff58579574d98be1cc","ssdeep":"","tlshash":"77d0a74a30c9a824934355c4b83f984164962930c4ccc8259dc6c1941673134901ee1d","size":206,"data":"","first_seen":"2024-09-17T08:37:03Z","last_seen":"2026-06-08T09:05:00.471094Z","times_seen":348,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"a105c12aced3684b25ef5c6c2a50ae45","sha1":"4abe11d93ed53fd44228fb6884f1453148b706c2","sha256":"fcb515a91d3da29dc86033dda12e22a9509291fed9cc74e555099aff313eb243","sha512":"91f5dc6a45d17296be01b9abee2d30aefc131ed29a80452ba79fca899a85255899d95fcb22379c6a3f09134909ec3ad0ae4e00af23e9a41fafe386dc18f7f63f","ssdeep":"","tlshash":"40e068c33e4ea06227b100c0a5dfac43ea9fad70a488960089c2d2243cf3008923fa4e","size":380,"data":"","first_seen":"2023-04-12T08:49:10Z","last_seen":"2026-06-08T10:09:57.136296Z","times_seen":12060,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2723d9871f47d1f83fcf8437eeb49eeb","sha1":"77cf9d19c924459558fede12b6f2e8dd646d906f","sha256":"da2c852202f4ca20a785ee9e1e30fbbe9e78b0a0530bc24be08a7990ef547989","sha512":"df1299435dd088b4243e8e9605bd460428a857bf0f748fbfe2fb1fea130a6207cba4e475eb5436f0ca4c2f1c899e5e8084a3aaa288c8c51eb3dfe1ed00a6b268","ssdeep":"","tlshash":"fee07d513a6a9126237620e558cf94c29e6cdb32578d8655c5c2c6fc1837401d13eb0d","size":301,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.469031Z","times_seen":513,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"be16cbb8322703796f6153420a18503d","sha1":"4d26116ea9d7c9232651354e95e3c53b7b3970fb","sha256":"6d4ae915233258685ef1c4e9bb57e6805881e29f4a6ea4f46fd74d2a0c868327","sha512":"6c0fb1a57ec414888a30ae3ec904ed4868c99f8d6a6f6ec6b7c21613f64c0ee89ecfda1e72b4180f885a53f960e2e912a365ae7d8646950a0fcb99b31c224866","ssdeep":"","tlshash":"8df024a13e1fe51326ba20e05cdfe696e56cef22534486548a81c7f85833586d43a61e","size":502,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.490208Z","times_seen":513,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2e572189e0e12d482e873bdc979ecf2a","sha1":"8f7838d79b1cd961a9a63563dbc0a45deae9ab0f","sha256":"b5763dad53ae7412a6bb6eeeb271f63e92890fc04b14b743bb1a842a0db56a6c","sha512":"5c2a7213ca62af40ba96f2a3b9e44dd80a9a106997311b464fee4b62c7f62865dec89c8a6ee862915619da0e79fe24d7d490a11349302e4a0d674ac61cc94b56","ssdeep":"","tlshash":"a9e061823657d01a27a160f0e8dfd653a499f52090c8790c8d81c3a41c32015d2f7e5f","size":363,"data":"","first_seen":"2023-04-13T20:22:24Z","last_seen":"2026-06-08T09:05:00.489292Z","times_seen":10866,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1755bf0c81389a2017cd189bb9628fed","sha1":"dafc7e8d942529294e0fc1243fd12714c2ec7d4f","sha256":"8c79511470e67ecd12a346afef50b5892062d73dfe9850b7bb2dc60295d3338b","sha512":"d50b409a6d24d07dd76db818100c8bebfc673e0ea88c3702165383dd770a789248db230f1649628c9942066d4a708d7d8d97dcf6f975968af0e6b251c3d43b6a","ssdeep":"","tlshash":"2fe061853957b413276140c0f0cf9c43f895ba20508c45008b81d13f18f6014e27b60e","size":370,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.472059Z","times_seen":538,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"70fe7c11137163f408d937104fd297d6","sha1":"7da3d9a55ef900cc26976867d597d35fb14efbce","sha256":"f13fe03920bf50ed79fdc0423ba191e6abbc6a3c303c181334e9e6405915b2a7","sha512":"1f5775a4ea58e2f88835ead5ec5d0de917888233e795aaef2634775380551d47b78b0d680846df2268deaac47ee0e55e9e5861f1ac27472ecdc1b26874e0f371","ssdeep":"","tlshash":"e0e020853986b435536930f4d8cf94415da5f730554cd50a9a81c5550872014d37be9c","size":329,"data":"","first_seen":"2023-05-19T17:00:54Z","last_seen":"2026-06-08T09:05:00.479693Z","times_seen":510,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1ef93315f1942cbc91460a2f7a68aec3","sha1":"224125e5a61b140c0602a631768df45ac88c0fc0","sha256":"6c19fd2d9c5daff7995b5aff288dc8b96f95612303dc3119ecaee52e53e058ca","sha512":"d7b924ea706fdef7f3ed84a12962c384387a4ab9c9ccd849552a87d5a898a07b5eb68e4c576ecb7ca1768c835220fb51f0b2e10dda247c3d3a15b46ceee0b6a9","ssdeep":"","tlshash":"98c0229a30cab824934310c8b83f5c81a8e6293084ccc825ecc9c0a01ab2034a02ef5e","size":194,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.487566Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"d48185f88a3b73ecd871e2b1cba9031d","sha1":"9c0a25c12f78749848bcb60d314a07a0daf934a6","sha256":"bec29622c6f6b48e97761a9bcea7a9adb76e5de5bb4a8034ea7641510d4ac348","sha512":"b336c8844609b1f22d26e3314e4af19e364005c21a8e36c95713ac1145c5fdad5db49c5e25b9755c09c0efa416fbb7ae3c554ae1d58ea548347ab39dfa4e4d9a","ssdeep":"","tlshash":"7fb02b8934c9f018130a12c0602f1c418cd9387090c9cc15dcd4c4842872024403df4c","size":124,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.467718Z","times_seen":499,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"154d8a68b57507e06605170a2159f6b5","sha1":"82e553c5dd79b5c5ca8ab669d4ecc4002edeaef2","sha256":"351d5f89ea07b5bbe3247a4e3ed715aa1793e7bbae2e2aa88aa2b8a18717837a","sha512":"ca4cfda2ea95740951d25630c75ae4d55fca55cda53cdebf4c37bfc9a0ca41c6b2b14b37e402197994c0a495b8c7a7359bd9ab852322b23f59ac8917f77db354","ssdeep":"","tlshash":"63f095813aadd11127b810d014ffe693e45eed7363944e94c7c5c66e687200de06770f","size":492,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.481252Z","times_seen":611,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"bd974e11c89abe30078c08260c0403b0","sha1":"96ea146e0332d11d08bd4a68b54f0a145dea8aaf","sha256":"c0060db7b90facf1f6d6c26d1c1258e371573033346904f5be005dbace1b5e1a","sha512":"418901e62e6808d85329fda4a65151243cc77bcb7ef5933a2626b8104035f3066c5b9915babbeb9988a979ef0ee8cae21b961fdfbe7fb5f45f2793b61630d533","ssdeep":"","tlshash":"c5f09e823a9dd26117b820c014ffea93e46edd7263544e50c7d1c66e5c72009e0abb0f","size":492,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.482138Z","times_seen":432,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e34c0ccb05846cd6040b696e31a36515","sha1":"ea96c77c25130e38f578ca6eae98a64b2a524f49","sha256":"f3011443d6d2d8a9f89a8dac5c52f53bedf7c31d3e0398af342718360c263ae1","sha512":"b93faf3b5d76b533a94ec7ec3d8f384d459ab9a77e856928bca7078fecbd3234982217e55f132fab69d6f663ed6c7b93944cf598b67fafe4d8bcad3a7db59bd8","ssdeep":"","tlshash":"b4c0228a30cdb834934350c8b87f5c81a8ea2d3094cccc29dcc5c0a01ab2034a02ef1d","size":193,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.473869Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e695b5096c659a5c24ce860035239000","sha1":"3cfff9029bac98dea5d4af4fd78bea23bae94081","sha256":"6da69dc56bbf82748172854f74b243bc60c08dab2c541d30b9f27252fa217f3f","sha512":"6fbae0f75fb3de540fda032558be28e1c7618eab92d677bf6df9eaa56013b7da33d9cc9e75c9a8ac300e1502f33f9b522568b51c0056ca40c656e879d9803098","ssdeep":"","tlshash":"01e0d8c63a9bb467277750e464dfe453e9a9ad309ccc960189c5d2a5283201ad13ba4f","size":349,"data":"","first_seen":"2023-04-13T01:38:07Z","last_seen":"2026-06-08T09:05:00.470106Z","times_seen":1958,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"4149132ab80c4d6be6b08e4fd027d348","sha1":"5f53c244b324deba71cd8ef71cc49e176bc82eb0","sha256":"6646bf060635a953551a10281d8e0ef61bf7e4218a9ecb85b8b1ccd0f3da638e","sha512":"fb15a49efaf2006108f7cd90f4c3265e5645883cbd7a1c3d3a4653da34ea3e74d5b1bce3fe0ccf595a64aa8387fb4319e74ccb06aca12f7ca4aefced2191b7ca","ssdeep":"","tlshash":"a2f050823f9d911216b8109054ffe593d45ed97263558e50c5c5d67e1c72009946770f","size":486,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.488404Z","times_seen":454,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"db41eb385032bac857d0065014cc66c8","sha1":"2a6ac146b9f96207a7c5cb2bc74ac4f7841f3e77","sha256":"ab8ab7393fcbc4fc1ab2348a7fa9b2793e7529fdbfd922f4391c595241ae788f","sha512":"97ddb1737bbd917a921c5b5fac71c60eee460f4f4919e71fada12a0f10054f97a2e6567763a6b4fe2c63ffae730a49295a4961270e1cec795b7871802e6019eb","ssdeep":"","tlshash":"f4f07d413bbcd55112bc60a03aefe9a2945ddd7727508e9ac6d0c59d1c7610da07a30f","size":614,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.480527Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1c862db5f2555377c2dc1e62ed7b3981","sha1":"c29e6dc25c08a70995127ec13ded6f80d9a36174","sha256":"27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac","sha512":"31143265b96385ef4b575b72591775139057dff85891be61591e3d55259b6d1dc95d86a0feec40c801d38e64278cfbe50c3c2a16757f986ad40f716935bf2bb2","ssdeep":"","tlshash":"2580008a208820008aa323a0002b2c8800a000b028808c808080e8a20ca2030220baac","size":26,"data":"","first_seen":"2023-04-11T21:13:06Z","last_seen":"2026-06-08T12:33:23.937811Z","times_seen":331553,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"6051d3807b71fc5fa65c1f632796f6dc","sha1":"7d0c07aba4a09d1477270a261801ff71d0b5d2f2","sha256":"65dcd8d95d84ab64481011ea2c69a0468b853afdc787e82dea4acaa9bf23cb97","sha512":"185c4b4a9471ea622485a810a2604380bd66fc013e00e29cad09d75c768875bea627778f1629c93fcae93f76e9b08369532c0f27d94f48e9ac79632ca0dcccab","ssdeep":"","tlshash":"f8e061a535baa0122b6160c0b0cfd483e475e52050cc9530ed8dc3741833004943ba5e","size":370,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.491398Z","times_seen":701,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"f2d8ac007de4840eca2828c0e6bf011e","sha1":"7d511a6c3d45d5e9a3d1e7a05caa995ac6b38562","sha256":"3348d88ba39546096c760be9fdc8e8fc11e5dbeeed95849333abd50940a05e89","sha512":"2b832c6173564fe69a166e7aaea5afcad3f2c2f4558c2a848f461c6f676265c3f267569400be744e1968773f0d0ee9b3d8c299945a993625cc9506a0c3fc7c8b","ssdeep":"","tlshash":"53e07d8b3845a827326510cca34b8441bcd8ed3852888d90fdcac03a302600e87ea63f","size":305,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.484816Z","times_seen":546,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1a24b867b9794b6145ffd9e99d670110","sha1":"e84222fb73d5665e81e526cff315d251b4d0a901","sha256":"7b67917122573e68c127af3fc0c7e362981fc66dedfe81e4f74cf3a35e125146","sha512":"fecb0e3f2fe16a77136b9f73f2e0bed15f927e3df133000b04d6f0c6a4c310916dd21a4114b1395be1c073992b7d53e1fe456a9283f5000ea351636eea31e9c2","ssdeep":"","tlshash":"92e07dc53986f816076510f4d44f9c41a8e9be70954cc812ebc0c27e1c77418d17fb6c","size":318,"data":"","first_seen":"2023-05-19T17:00:55Z","last_seen":"2026-06-08T09:05:00.478821Z","times_seen":503,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"b3469dda73212870ba5d903cdbfe8979","sha1":"5988e272e3552f5f8d762b1a267b92fe16eb00e7","sha256":"fa6cf4d3bbfaaaad37e1d5d948cd146dbd4302dee5c0c2c4690b9210994500bc","sha512":"45d3de08b481c782c4c70e2e8544c4a5370a92ee21b208a35163b24bfb655712603591606bbc4736b81f182f4cd5051a7337d16c7cc286f7b010b9e635b66c0a","ssdeep":"","tlshash":"bcc0224a30cdb828a34321c4b8bf9c50a8a6293084ccc865ddc5c2a016b2034e06de2d","size":193,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.472961Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"7e26d7fd24f89ab32bcd7af8676dfe6d","sha1":"4826ed88c967779b6c49e03c4bf3822a612cdb3e","sha256":"f2efb9e704f2cc474818c47d2bbf1e3e47669a8738bed0c10755811be1d343db","sha512":"fa8d3a363f975d57a11195648237e64261de016df94bdc1aeacdaaa032f78aac65af01c3c3d7b15ad2d19fd5688367b2a327918b28f2aaba31b0a428ca6faa5c","ssdeep":"","tlshash":"61e02b813964915626fd10a454dfc881a87ce6b157484a54c2d5cd6d1876405d03bb0e","size":375,"data":"","first_seen":"2023-04-18T11:04:00Z","last_seen":"2026-06-08T09:05:00.486697Z","times_seen":420,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"baba-zavr.icu/admin/assets/fonts/ionicons.ttf","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://baba-zavr.icu/admin/","date":"2026-01-26T01:15:21.397Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baba-zavr.icu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 09:05:12 GMT","end":"Sun, 19 Apr 2026 10:02:34 GMT"},"fingerprint":{"sha1":"4E:8F:3F:D7:9E:B1:2C:B7:48:21:B0:E6:43:E6:1B:FF:61:CC:A4:02","sha256":"09:FD:88:F4:25:60:C9:A9:86:AD:CC:7C:0A:21:20:C0:3C:CE:56:AE:63:5F:70:3F:F0:58:E5:5C:C9:88:B4:E7"}}},"request":{"raw":"GET /admin/assets/fonts/ionicons.ttf HTTP/1.1\r\nHost: baba-zavr.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baba-zavr.icu/admin/assets/login.css?1759908675\r\nCookie: keitaro=8mien0b75jeknnub97aj6krr37\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 26 Jan 2026 01:15:21 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 188508\r\nlast-modified: Wed, 08 Oct 2025 07:37:59 GMT\r\npriority: u=4,i=?0\r\netag: \"68e614d7-2e05c\"\r\nexpires: Thu, 05 Feb 2026 07:15:07 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 5101\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UF%2FujzW0l4K5aZgmklAyv0%2FVpyuj5yKraeBO2A1SEylvlYRrvmFd6L9Exfvs5auOjMOPqKoa0EDJ571f9EquzFKH4l3B2O51tSBPB6E%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3c28a2cf79b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":188508,"size_decoded":0,"mime_type":"application/octet-stream","magic":"TrueType Font data, 15 tables, 1st \"FFTM\", 14 names, Macintosh","md5":"dd4781d1acc57ba4c4808d1b44301201","sha1":"956116ebe4b3a315b1a43009567e6f8ad0a9a720","sha256":"5e700835ec05293a3d0f9e354e7d038319d34521cd279e782198dff6d1dd58f2","sha512":"96ffdedf1fbcd54d957bb218bb6cc8dca1873443f37dc51071c75bbef4698d3b974c9864546614c8e859b6a23f12ad9e54057a08c485a12213ce550f351dd262","ssdeep":"3072:devphGNEm96ksZlU9WZEwXnwY3Xv8KLyVT8s+mW0uu2r9FsysMgWp/:dBEm9Z26kXWb+mN+cp2/","tlshash":"25048e0bf7cfda4bd125a67e44f69b1319a8d0106e2353dbebce364994e76c40c6a0c9","first_seen":"2023-04-08T05:42:46Z","last_seen":"2026-06-08T09:22:18.436702Z","times_seen":3404,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-26T01:15:20.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baba-zavr.icu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 09:05:12 GMT","end":"Sun, 19 Apr 2026 10:02:34 GMT"},"fingerprint":{"sha1":"4E:8F:3F:D7:9E:B1:2C:B7:48:21:B0:E6:43:E6:1B:FF:61:CC:A4:02","sha256":"09:FD:88:F4:25:60:C9:A9:86:AD:CC:7C:0A:21:20:C0:3C:CE:56:AE:63:5F:70:3F:F0:58:E5:5C:C9:88:B4:E7"}}},"request":{"raw":"GET /admin/ HTTP/1.1\r\nHost: baba-zavr.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Mon, 26 Jan 2026 01:15:20 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: keitaro=8mien0b75jeknnub97aj6krr37; expires=Mon, 09-Feb-2026 08:33:02 GMT; Max-Age=1209600; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OzoIJ2lb3TtlYXiz%2BBqkO96ismxLPMW2xaTjjJezVkjjbnxSbHfOIQ%2FXgSp3uqyciXJ1A5LI%2FAfYTlhi46eWmneBRwgFxhwbh532bIM%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9c3c289d2b6a4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AngularJS","description":"AngularJS is a JavaScript-based open-source web application framework led by the Angular Team at Google.","website":"https://angularjs.org","common_platform_enumeration":"cpe:2.3:a:angularjs:angular.js:*:*:*:*:*:*:*:*","icon":"AngularJS.svg","categories":["JavaScript frameworks"]}],"data":{"size":3007,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1702)","md5":"ef209af3402e373bde3a3b6def34598c","sha1":"7e7ee83c5e65e3771f5d6d151b37653bebabb795","sha256":"aa34746ae1f093ca5d09dcea4df8f5a5d5aee51151ff458a1b455a00b01e37b3","sha512":"fd766743b40e5247022b1cfcb324b3e907653e914fd20df73002aa215f27f969676d866bba03d41ae1422a3d706bebe6520b67177c2370efa19e400824c3c599","ssdeep":"","tlshash":"3c517701244c1e0b2a4313c57447b846e991e5144e969dccd2bca1bff5f7f8b122e5e5","first_seen":"2025-10-14T11:22:41.940326Z","last_seen":"2026-06-07T04:27:02.492181Z","times_seen":44,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":18,"dns":1,"connect":1,"send":0,"wait":176,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/assets/login.css?1759908675","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://baba-zavr.icu/admin/","date":"2026-01-26T01:15:20.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baba-zavr.icu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 09:05:12 GMT","end":"Sun, 19 Apr 2026 10:02:34 GMT"},"fingerprint":{"sha1":"4E:8F:3F:D7:9E:B1:2C:B7:48:21:B0:E6:43:E6:1B:FF:61:CC:A4:02","sha256":"09:FD:88:F4:25:60:C9:A9:86:AD:CC:7C:0A:21:20:C0:3C:CE:56:AE:63:5F:70:3F:F0:58:E5:5C:C9:88:B4:E7"}}},"request":{"raw":"GET /admin/assets/login.css?1759908675 HTTP/1.1\r\nHost: baba-zavr.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baba-zavr.icu/admin/\r\nCookie: keitaro=8mien0b75jeknnub97aj6krr37\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 26 Jan 2026 01:15:20 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 08 Oct 2025 07:37:59 GMT\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\netag: W/\"68e614d7-e3a45\"\r\nexpires: Thu, 05 Feb 2026 07:15:06 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 5101\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3coJWAKD4ndtdJZ3qHjMZEi0RtYTyVYIakSWt42GrobEM1St%2Fw3eqlXOvZdf9U4Pe6tkKeEYRyk3Lta6Tic23fs2ffqSfOVK4YulvwE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c3c289f1f4eb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":932421,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"9fb310062f4c8dca6028bf1107621b41","sha1":"d3a87143c6ca4c0c671c362054bcf1cd46364168","sha256":"f2e3564495661ccaae6cedc3f2ea4d1c8e06f59f4718973e622d240531bb0ac4","sha512":"db6e909e63c67bb9c079e483db4f27053c04371222bbae87af3c93f466603781a009e2f6d6d0be146978ffc57204f8803e44f65dbd01c5bca03938db9ba5f791","ssdeep":"24576:5079i07t0lBiLKqzI26x49ZVgrhmXBIaSY3h3T2NHhA/xw241coTA:amBog0er8RIaSY3h3T2NHhA/xgA","tlshash":"5315c0e1f15518d8a777c5069340bb691c3be2e2e2554dbaf01fe7ac46cb28606a3f1c","first_seen":"2025-02-20T04:58:46.237464Z","last_seen":"2026-06-07T04:27:02.483188Z","times_seen":184,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/admin/assets/login.js?1759908675","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://baba-zavr.icu/admin/","date":"2026-01-26T01:15:20.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baba-zavr.icu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 09:05:12 GMT","end":"Sun, 19 Apr 2026 10:02:34 GMT"},"fingerprint":{"sha1":"4E:8F:3F:D7:9E:B1:2C:B7:48:21:B0:E6:43:E6:1B:FF:61:CC:A4:02","sha256":"09:FD:88:F4:25:60:C9:A9:86:AD:CC:7C:0A:21:20:C0:3C:CE:56:AE:63:5F:70:3F:F0:58:E5:5C:C9:88:B4:E7"}}},"request":{"raw":"GET /admin/assets/login.js?1759908675 HTTP/1.1\r\nHost: baba-zavr.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baba-zavr.icu/admin/\r\nCookie: keitaro=8mien0b75jeknnub97aj6krr37\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 26 Jan 2026 01:15:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Wed, 08 Oct 2025 07:37:59 GMT\r\nvary: accept-encoding\r\npriority: u=3,i=?0\r\netag: W/\"68e614d7-193a65\"\r\nexpires: Thu, 05 Feb 2026 07:15:06 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 5101\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8JrTTOpk9A8ptOmdPgyn3757sfHxOt4wdjso5gJHsmTxw%2Fg9pgxDFZQmRSRR8lF4OR%2BRDvYeQcbJ4OjdDctyee%2BGX5WpIRznwx%2FA5Uc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c3c289f1f4fb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1653349,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65473)","md5":"02ed2cfea9e277449a31545f4fc0762d","sha1":"770ada6c379c6b71da53ce973f3b06334d427c9b","sha256":"ce48fc755ddbf4002a04f4036c5ac5ce4396f6fc5d103ef2d7b90abec651dcb7","sha512":"117d222978668462ce45817754563434469ea9eddb7a27cf652ecd9c01757d8063a127004121dfe8037e0868c40c4112f5e9d8be3c5accf06c8838c4d2265d25","ssdeep":"12288:w+PPSSN9ShYRrl50s9eCX8RzyClQ+jFFQr:PPKmrl2QeCX8HlpFir","tlshash":"882529cd72c2b0a243e360f5402f240ef27b2959684e8550f6a5e9d5bc7a94da237f3d","first_seen":"2025-08-15T13:52:20.837941Z","last_seen":"2026-06-07T04:27:02.485279Z","times_seen":173,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"baba-zavr.icu/favicon.ico","fqdn":"baba-zavr.icu","domain":"baba-zavr.icu","tld":"icu"},"ip":{"addr":"104.21.72.57","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://baba-zavr.icu/admin/","date":"2026-01-26T01:15:21.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"baba-zavr.icu","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 19 Jan 2026 09:05:12 GMT","end":"Sun, 19 Apr 2026 10:02:34 GMT"},"fingerprint":{"sha1":"4E:8F:3F:D7:9E:B1:2C:B7:48:21:B0:E6:43:E6:1B:FF:61:CC:A4:02","sha256":"09:FD:88:F4:25:60:C9:A9:86:AD:CC:7C:0A:21:20:C0:3C:CE:56:AE:63:5F:70:3F:F0:58:E5:5C:C9:88:B4:E7"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: baba-zavr.icu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://baba-zavr.icu/admin/\r\nCookie: keitaro=8mien0b75jeknnub97aj6krr37\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Mon, 26 Jan 2026 01:15:21 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1IJp6SVJ%2FEPLLPwRwVc5c7cKucImnhbvkFTbSZko8cvFXEnuvgpIFSYyXCcUtN2DO3po1k5TPZHvujowYf%2BRgxc%2F5NXyufFgkSJ3m2w%3D\"}]}\r\npriority: u=6,i=?0\r\nage: 67\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3c28a1df6fb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-08T12:35:54.183972Z","times_seen":524048,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}