{"report_id":"cbd7c42e-b31d-41ec-87c2-caf734d0f97f","version":6,"status":"done","tags":[],"date":"2026-01-05T16:51:51Z","url":{"schema":"https","addr":"krab2-at-t.ru","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":0,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"final":{"url":{"schema":"https","addr":"krab2-at-t.ru/","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"title":"Krab2 at — звуковые ландшафты и форматы восстановления внимания","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"krab2-at-t.ru","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":0,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-09T16:51:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"krab2-at-t.ru","ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"domain_registered":"2025-12-27","domain_rank":0,"first_seen":"2026-01-05T16:51:51.215414Z","last_seen":"2026-01-05T16:51:51.215414Z","alert_count":0,"request_count":6,"received_data":146645,"sent_data":2645,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"krab2-at-t.ru/script.js?v=1767631890037","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":false,"md5":"f3f329145354079758aa8638113048a5","sha1":"a1885c6e6e0d196ff01cecf955a1b8e43328c385","sha256":"7e525ea018a9733164fb5b48670049a26d776c43cbd06cf6ff722b2421be59e6","sha512":"7f7c4b48b670729c245e52a3cbfba253d05f04e56a4059f753b38aa55d27f067a897c95c88aa0b73aee8a4862592e0ed9ea856f611be5e75ee05423d7c18ba3e","ssdeep":"","tlshash":"70e02bb661a298b00ab771ef63d71284b07a40af7809d0c1781c4c180f14dd583a3f59","size":403,"data":"","first_seen":"2026-01-05T16:49:11.297644Z","last_seen":"2026-01-05T16:51:55.428524Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e7c9e6ea64d7207dc6eb024c2de95bb3","sha1":"8f3b34184d86e40c4f1f63108a4c0a1d87214f23","sha256":"22e5ea510dda2a6f99a197095b2205969085d6667025d714ca2e63cf987716f5","sha512":"0d243d337c5b633e4a968f85ebd1921b4a159d0df9da7d91974d5bff2c5d1018f3db16ae8e94a62092a7a299b3cdf54478e8ea952e13a105b7ff064d5b85ca5d","ssdeep":"","tlshash":"c4f020b63cc94034c3b712652bb391487039292fb40ead11f56c18a23f9086608ab92c","size":572,"data":"","first_seen":"2025-11-22T21:17:09.388185Z","last_seen":"2026-01-13T11:54:17.706079Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"introduction_type":"scriptElement","is_inline":true,"md5":"4eca6750ffa366da2e5ec85e481f66dd","sha1":"9dea1e15e43fdedb0bb5c23d2caf9db8f2f46f69","sha256":"edcd0b7a46e69807845fb276e03e5a32c1521ec3720c3f190ecdb5484bae6dd0","sha512":"06fc532338eb9d2fee7f5b5ed352cf31320040c3dfbd557a8963ff2f4b20bacec509cc24f1fdc30cf845bca9a9b5addf3aa652e0a363fb68de73b68845ec0de0","ssdeep":"","tlshash":"d93157377e70263406f69097b9fb5d486435040a7705c384b95cc74e4735fd8a1b6f86","size":1519,"data":"","first_seen":"2025-11-17T20:02:39.223814Z","last_seen":"2026-01-13T11:54:17.706919Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"krab2-at-t.ru/images/2.png","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krab2-at-t.ru/","date":"2026-01-05T16:51:30.014Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET /images/2.png HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krab2-at-t.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:30 GMT\r\nContent-Type: image/png\r\nContent-Length: 18004\r\nLast-Modified: Sat, 27 Dec 2025 09:00:37 GMT\r\nConnection: keep-alive\r\nETag: \"694fa035-4654\"\r\nExpires: Tue, 06 Jan 2026 16:51:30 GMT\r\nCache-Control: max-age=86400\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18004,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 380 x 120, 8-bit grayscale, non-interlaced","md5":"d45f6fd593c1313b5150a49314983521","sha1":"b85eeba8b012cca6111872b955030dd7f562ffa1","sha256":"854e0eb687a3472c7774c5f63b9604323b2eb40ccd2e54ad3eb95669fb08e9e0","sha512":"be341ce2fa4d08c0c39ffdd562632736e3b8f5faea0ffd17379e715f406acfed4fcf454b14652aa07a27daedc048ac911b5e688cce67f25a44e0fdae81eab00c","ssdeep":"384:HKxPbN13gKOuzTjzyo1+TuQ5Su42kUe1muE+:H2PQUyo1WpAA6","tlshash":"8f82d0f8a87c5de3cc31161a8b1c64be814616ead3ee9288435dd7580e7613ce5e6f80","first_seen":"2025-12-31T18:53:56.783562Z","last_seen":"2026-04-13T10:44:14.169895Z","times_seen":34,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":7,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/script.js?v=1767631890037","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://krab2-at-t.ru/","date":"2026-01-05T16:51:30.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET /script.js?v=1767631890037 HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krab2-at-t.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:30 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Sat, 27 Dec 2025 09:00:36 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"694fa034-193\"\r\nExpires: Tue, 06 Jan 2026 16:51:30 GMT\r\nCache-Control: max-age=86400\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":403,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"f3f329145354079758aa8638113048a5","sha1":"a1885c6e6e0d196ff01cecf955a1b8e43328c385","sha256":"7e525ea018a9733164fb5b48670049a26d776c43cbd06cf6ff722b2421be59e6","sha512":"7f7c4b48b670729c245e52a3cbfba253d05f04e56a4059f753b38aa55d27f067a897c95c88aa0b73aee8a4862592e0ed9ea856f611be5e75ee05423d7c18ba3e","ssdeep":"","tlshash":"70e02bb661a298b00ab771ef63d71284b07a40af7809d0c1781c4c180f14dd583a3f59","first_seen":"2026-01-05T16:49:11.297644Z","last_seen":"2026-01-05T16:51:55.428524Z","times_seen":2,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-05T16:51:29.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:29 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12105,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"84865aeca549cf3cfa53e3923c87a610","sha1":"97868537ab1e2cc820c97b278a900fd4137fff19","sha256":"119f1cbaddf6ee8d64e3d33b36781630a339d1bdeaa046585d86e4be70c7a8fb","sha512":"9a20a778b84b6e8f60470c005c73b81384d754b855d88c5761625f06af5e04a837b884094f5660a9179727cff92b7154f742eacbcc03dc2d3c826602c68869e6","ssdeep":"192:x2ov3Sq7GC5QfO0LE8iR9WBXSuJpImUy9yMGEmaikni1:x2ov3SHLHiR9W9SmI1y9yMGEtikni1","tlshash":"b242ff3255c5246b1032a176e9645b48feb9807f7b47531131fc2eaf2ff2b50ca9ba09","first_seen":"2026-01-05T16:51:55.430335Z","last_seen":"2026-01-05T16:51:55.430335Z","times_seen":1,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":113,"dns":96,"connect":8,"send":0,"wait":18,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/css2?family=Roboto\u0026display=swap","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krab2-at-t.ru/","date":"2026-01-05T16:51:30.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET /css2?family=Roboto\u0026display=swap HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krab2-at-t.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:30 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-13T18:28:17.035834Z","times_seen":526331,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/favicon.ico","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://krab2-at-t.ru/","date":"2026-01-05T16:51:30.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krab2-at-t.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:30 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 101392\r\nLast-Modified: Sat, 27 Dec 2025 09:00:36 GMT\r\nConnection: keep-alive\r\nETag: \"694fa034-18c10\"\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":101392,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel","md5":"43c85273b4ffd1311892b0b527407e30","sha1":"e34da69cef0622072b99bf9f865bbbb3d4bac300","sha256":"e96845bcd9e448763b3e667e7186cb25270f664a680c479cf33074dcf2aed3dd","sha512":"f282496529c943611f6dbe100c3d73764175e20ec43ad3244c53b16e6db6d5c5782bcb0baa2dd7659cfc589e2d2e609a69ebeb9c3aedc63d4ea82894b2b08b82","ssdeep":"192:1NIrfSnBw6OnFlEkEkEkEdHHHTHHHPUkU93jX9Rhkuncw+0xXz4Rv:18SnBw/YHHHTHHHE3jX97xcw+014d","tlshash":"aca35350b2d6f61ad1d876344c93ce792331ac958c175b2b32ce7f9b39f42a629093e4","first_seen":"2024-10-16T16:01:12.238269Z","last_seen":"2026-06-13T07:17:29.548759Z","times_seen":421,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"krab2-at-t.ru/style.css","fqdn":"krab2-at-t.ru","domain":"krab2-at-t.ru","tld":"ru"},"ip":{"addr":"91.236.116.129","port":443,"asn":42237,"as":"w1n ltd","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://krab2-at-t.ru/","date":"2026-01-05T16:51:30.012Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"krab2-at-t.ru","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Dec 2025 07:09:50 GMT","end":"Fri, 27 Mar 2026 07:09:49 GMT"},"fingerprint":{"sha1":"18:42:37:2E:B8:0D:F6:25:D4:1A:07:87:4D:EA:68:B3:32:FC:59:44","sha256":"12:A5:B4:5E:68:D0:35:31:2F:5A:31:2F:6E:DB:85:5C:6E:E6:E0:C9:AE:0E:B3:27:62:7A:53:DE:8D:B5:C3:50"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: krab2-at-t.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://krab2-at-t.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 05 Jan 2026 16:51:30 GMT\r\nContent-Type: text/css\r\nLast-Modified: Sat, 27 Dec 2025 09:00:36 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"694fa034-310d\"\r\nExpires: Tue, 06 Jan 2026 16:51:30 GMT\r\nCache-Control: max-age=86400\r\nX-Debug-Variant: desktop\r\nX-Debug-Root: /var/www/www-root/data/www/krab2-at-t.ru\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12557,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"a3ada102f63d9538e588ccf599774831","sha1":"53e759ede3218fb614ea1c58331b4a12dca697ad","sha256":"ff9988b42ff2ce1d2ee6b20f415f87ff7ea83b3cb5f927b93c0882509e322c03","sha512":"d9ab80101185fdf59832fb1f2b63704594c9ef814c6f5f7d5b6e964f55fe7ab0c826699d8d221a4da917a34e9622c9968eefbcf0785d19ca924a092bf53b221a","ssdeep":"192:7UNAsvsQc0pqijkZBu327pDPIhkCnlfNwOzYs165lNoNxo4f/faGUpu1LT:IN7l04hk2ENofBHNd","tlshash":"e2421fd72ba81504791ad4b8bd92db5673acd443c10fcdb87bf4206cadca3d549a2b8c","first_seen":"2025-12-31T18:53:56.781083Z","last_seen":"2026-04-13T10:44:14.168697Z","times_seen":34,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}