{"report_id":"d3403efb-8ba1-47ad-a742-34e2d42bc2d3","version":6,"status":"done","tags":[],"date":"2026-04-11T12:58:13Z","url":{"schema":"http","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"title":"Личный кабинет Lis Skins - магазина по продаже скинов","dom":{"size":28225,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9721)","md5":"37c123109bd6beb7ab8875716d7021b8","sha1":"5f471bb9922ca05afc0e81262153288639bfa4d2","sha256":"554cdb3e640241a2623c4ddf42f08a4a20857fa916099c59ec5456bcfcbd4fde","sha512":"2468a0f4e13f55710b547168c97179583c3b25a355df9c746a36c65897a16e4c55f6c4c6394024e76b4c1499e893ef240885076a144dacc89ff67171bb6c73d4","ssdeep":"384:7KDyYkmlEb6EdGbI2sQvn7n0N3s3ZdqZUaA9nzkW92b5hmkIkcFQ0pZ+RcbJlHrS:7IGEw2n0sZdapKJ+R4Hru1f","tlshash":"39c2d73282d90467370fa3aec565b70cb8d9997f9e06ab2530f930d96be09f5407761c","dom_hash":"domhash9d2c4885e893259f2c8019f4f902b055","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":0,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-16T12:58:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"lisskins.info","ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2023-05-03","domain_rank":0,"first_seen":"2026-03-12T14:58:54.231889Z","last_seen":"2026-03-12T14:58:54.231889Z","alert_count":34,"request_count":17,"received_data":821984,"sent_data":8245,"comment":"","tags":null,"fingerprints":[{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"WordPress:6.2.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Yoast SEO:20.4","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"kit.fontawesome.com","ip":{"addr":"104.18.40.68","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-10-18","domain_rank":16651,"first_seen":"2019-03-29T02:12:52Z","last_seen":"2026-04-06T03:31:44.664487Z","alert_count":0,"request_count":1,"received_data":500,"sent_data":447,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"754405f6ef16bc30b386c7f24dc7f75d","sha1":"787ac11fa5e3d12d98bb2a5c3119f47f6eb0c1f1","sha256":"05131c3643709517a17f3646cfd41fa314cdb373531de5bdf3f65331bdb360a4","sha512":"e4fbdfd87d0f12c9a6fac1bd3efeef03ca172c890c15dfafc6423e8a921451878019743a3174de9eb9b29b3046f37c32c452f82f66a5f5a5dbcac7cf61e085da","ssdeep":"","tlshash":"4541306a276d1c6e32bb20e3af6f5f4b5b6510031180e439c9fa66851872c91c2f9c89","size":2162,"data":"","first_seen":"2026-03-12T14:58:57.322379Z","last_seen":"2026-04-11T12:58:15.563473Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"5a4f7abccb06171bde20b8c60d152804","sha1":"c2bfe1c564afaa5f153c31b33d651787eaca1b39","sha256":"684d78985a8ef089987e5c278322fbb8cb6be3a5a0c3604123d668027652e964","sha512":"5bd342a46e235677489f732dc360424778899167f3f504eaadb97a31c4d74ff4f8fac936c96c9845633012ea90b654dbf1e353921a13c73d70226817c6955ab8","ssdeep":"","tlshash":"bef00ea42cd840248373102527bb9148b47969292c4eed14f95c84812f99ea808bb90c","size":514,"data":"","first_seen":"2026-03-12T14:58:57.323238Z","last_seen":"2026-04-11T12:58:15.564394Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"lisskins.info/lichnyi-kabinet/","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-11T12:57:51.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /lichnyi-kabinet/ HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLink: \u003chttps://lisskins.info/wp-json/\u003e; rel=\"https://api.w.org/\", \u003chttps://lisskins.info/wp-json/wp/v2/pages/95\u003e; rel=\"alternate\"; type=\"application/json\", \u003chttps://lisskins.info/?p=95\u003e; rel=shortlink\r\nSet-Cookie: lcid=0000\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"WordPress:6.2.9","description":"WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system.","website":"https://wordpress.org","common_platform_enumeration":"cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*","icon":"WordPress.svg","categories":["CMS","Blogs"]},{"name":"MySQL","description":"MySQL is an open-source relational database management system.","website":"https://mysql.com","common_platform_enumeration":"cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*","icon":"MySQL.svg","categories":["Databases"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Yoast SEO:20.4","description":"Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.","website":"https://yoast.com/wordpress/plugins/seo/","common_platform_enumeration":"","icon":"Yoast SEO.png","categories":["SEO","WordPress plugins"]}],"data":{"size":28428,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9721)","md5":"52ab4793afd759154459487d5c6cd02f","sha1":"78db5fe9ffd88da16effc91e7942575d6468eded","sha256":"9e4f2a9115ff8025a6054a19cfeec6e6a5b3713dff5efa532968ae577c1cb0ab","sha512":"b85e436716a92e596b29f5e015bfd4c0deec811f9161133cd723850841fc7715a142808803a4d8cc66b27916f5fa6ee52b3222ee02cdbddcda3d5564cec132ad","ssdeep":"384:hKtyqCFEEb6EdGbI2sQvn7n0agY3ZdqZUaA9nzkW9NSKG4krkL3Dg1vRvfJJk27Y:h1DEw2n0sZdapK+vRXkEE1t","tlshash":"b6c2d63292d90477370ea3aec565b70db8da997f8e06a72530f9309d6be08f140b761d","first_seen":"2026-04-11T12:58:15.544692Z","last_seen":"2026-04-11T12:58:15.544692Z","times_seen":1,"resource_available":true,"data":null}},"time_used":844,"timings":{"blocked":196,"dns":141,"connect":17,"send":0,"wait":452,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-includes/css/classic-themes.min.css?ver=6.2.9","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-includes/css/classic-themes.min.css?ver=6.2.9 HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: text/css\r\nContent-Length: 291\r\nLast-Modified: Tue, 03 Oct 2023 14:45:16 GMT\r\nConnection: keep-alive\r\nETag: \"651c28fc-123\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":291,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"1a0804b1a9d09705657f91fe7cad4c5a","sha1":"feeece6f0b3e0bcf090547c475329a2772f6b26b","sha256":"dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48","sha512":"9bc7a9fe6cb51765537f21a79f015d1de49aa8b1de2613e072c5e108d88ca1877df320c80842ee7c512bfcd29b9166bdc3c73919b267dd8a20c1962275fa1738","ssdeep":"","tlshash":"9bd02bd1769f04e1701fe25c4515458990b40180ccb39fb1d4dbf0dee5e90f936ea68b","first_seen":"2023-04-05T02:48:12Z","last_seen":"2026-04-11T12:58:15.546286Z","times_seen":18995,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":45,"dns":0,"connect":17,"send":0,"wait":18,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/03/name-4.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/03/name-4.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 1166\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-48e\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1166,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit colormap, non-interlaced","md5":"58271739520bef2001301f620d06643b","sha1":"92db7a321cc9e32544be90584c12b859762274e0","sha256":"b920f399e06bf03d5bd165a4d80b66590c571869ae6dbebf97d3da2dbc304c50","sha512":"8d2cd3a4dd2f6091370eb6b32487099e0664ece8e2c127b7944f954a6d756b7dd265b7e2f0ffdcccaaec3146c3bf603f562c66b360e46c49f4a2965616378e22","ssdeep":"","tlshash":"a321ca5ba9e00f59c6a2435f9922c03ddbfa4060fb126a65dc2f58b34c28cc7a60847a","first_seen":"2026-03-12T14:58:57.317274Z","last_seen":"2026-04-11T12:58:15.546843Z","times_seen":5,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":102,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/themes/vulkan/fonts/PTSansBold/PTSansBold.woff","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/themes/vulkan/fonts/PTSansBold/PTSansBold.woff HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/wp-content/themes/vulkan/css/styles.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: font/woff\r\nContent-Length: 215212\r\nLast-Modified: Tue, 03 Oct 2023 14:44:53 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e5-348ac\"\r\nSet-Cookie: lcid=0000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":215212,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 215212, version 1.1","md5":"4ef47c81d85d041ee508b3a946c7b43b","sha1":"bacd064e0af65cd6ea0d948c30c0102502fef568","sha256":"03d98337497851f56dc64c9af36851710f57a4bf506d6596988c91efac9409cc","sha512":"5dc4b532425ca91ca2b48a591679b20362fa49af8901f4ffe116788a66645ff59a083068b30b55d53ba79354ceedcbb98ebcc58134d0fcdd78bdd0e59a1d9419","ssdeep":"3072:7EVe3uFFy8ZVul8rKwxw6dRcFJz2ymC+1Q/vdQ0gcDgRjVubt8ZI+NsibV/pVsIO:78eIoADPcFJyPWO0gcD0aaI+/EIxY","tlshash":"f62402ec6213a526bf9936d011f82e3d799104a2e2efa14d2c89f4569d3b4d3330dda7","first_seen":"2023-06-06T08:19:38Z","last_seen":"2026-04-11T12:58:15.54744Z","times_seen":101,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":22,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/2.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/2.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 81541\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-13e85\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":81541,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 450, 8-bit colormap, non-interlaced","md5":"f323a22f29389de06dca24e6f7548546","sha1":"3a40e42c4cbb657a623b00aa822205b1e9a45653","sha256":"c4f2db86da63a8e01908f749dfa31529fb175ffd9d3afb094fa414cc06d93a52","sha512":"97af6eea87decfa1c991211e43399bfb8cea9be179789091bc811cd7b608a7a734e0f384873411aaf637b360eeb6ab46f419cce2d8ad738c785e68902a620cc4","ssdeep":"1536:hlPkvrNYxyfzJw0Gb6/cwFy9FD+RqLP+8j4wrcW:hlPW+QMRGy9FDNGS42","tlshash":"e38302b47e8909e6f23af216c7d707ccab322f43ef7fe995468b4654f2858992708500","first_seen":"2026-03-12T14:58:57.319976Z","last_seen":"2026-04-11T12:58:15.548071Z","times_seen":3,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/themes/vulkan/css/styles.min.css","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.338Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/themes/vulkan/css/styles.min.css HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: text/css\r\nContent-Length: 21215\r\nLast-Modified: Tue, 03 Oct 2023 14:44:53 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e5-52df\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":21215,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (15153)","md5":"a72a0e2b51d90ab9c505f64e40a01125","sha1":"1766653193932cdfc128c98fba6b2596b21ab82e","sha256":"fd89e184300e7a4b12657a91379170f6232c855152bb27d790ae1c613ef08484","sha512":"7dcbbe7eb24a84ff6cdd4b961fd8d154cd60290d9533c43df4313c5794c0bdb1ba9dd94f8b3008e31dac38ae81b9cdf14a33a518fcf756983f74bf06402d5354","ssdeep":"192:yNWVp7nM/sg51Y34GtcCl9tYFZXcaC0k0p0MRdl/gYCgAXca7A0k0p0MKL8Lo+NP:kKCkYFCvGv1vGs4hR1syE3u","tlshash":"8792a677a540210cf123c915a6856aec731cc41bde0b6fefd9a2b978cec62d601a2b4d","first_seen":"2026-03-12T14:58:57.318068Z","last_seen":"2026-04-11T12:58:15.548661Z","times_seen":3,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/themes/vulkan/js/build.js","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.340Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/themes/vulkan/js/build.js HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 0\r\nLast-Modified: Tue, 03 Oct 2023 14:44:53 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e5-0\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-11T15:55:57.916718Z","times_seen":13626335,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":45,"dns":1,"connect":16,"send":0,"wait":16,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/03/name-2.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/03/name-2.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 861\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-35d\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":861,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit colormap, non-interlaced","md5":"178b2dcaf1c865ce278254a665526692","sha1":"201e5a7881d4472273934f595db656af2614ead5","sha256":"262c05a7aa5980787971163318081fb9cdf5f18873b84623026e13c47b6f8a4c","sha512":"afd37653c5fd0f0811c5909ad91fb94fad100143e56c65f528bc9fe910279619722151d076af7f90feef0f9e7a5a142b7083f404a6f90094ad8bb2d9460ae004","ssdeep":"","tlshash":"61116356be823b250e6c6e978a1c00d564f9c2e25119421533821be63aa21eaa2c268a","first_seen":"2026-03-12T14:58:57.301387Z","last_seen":"2026-04-11T12:58:15.550293Z","times_seen":5,"resource_available":false,"data":null}},"time_used":123,"timings":{"blocked":106,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-includes/css/dist/block-library/style.min.css?ver=6.2.9","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.9 HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: text/css\r\nContent-Length: 97517\r\nLast-Modified: Tue, 03 Oct 2023 14:45:18 GMT\r\nConnection: keep-alive\r\nETag: \"651c28fe-17ced\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":97517,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (48325)","md5":"47cdb0e81ea341ad27a1a0b0ba6b02d8","sha1":"6195a67b0b7f7919f07309e2c8ce71f3d4729d03","sha256":"aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4","sha512":"1b2523fcd9a315b111730717c88ef597081bca94601d9b5b7594d693b61293de6c1fe9d91e322daced1bcc611f78fb375d9f7caef603418d4a19769054248caf","ssdeep":"768:Fi44/Jj1eJYfD5n4CTb2u5SOV+UQ3ZoQsFvc7i9bGUg5zyH5Hi/UYvcHLrbuS/KT:AheJYf6W2u5SOV+UQ3Zo/xHHgf1E0Qz+","tlshash":"f993305417b0dcf939ffa73a5e5ee248a513aa41c24a9be7e076d190614ca490cf3b0f","first_seen":"2023-04-05T02:48:12Z","last_seen":"2026-04-11T15:27:10.605245Z","times_seen":12896,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":45,"dns":1,"connect":18,"send":0,"wait":35,"receive":34,"ssl":36},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/logo.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.345Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/logo.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 6177\r\nLast-Modified: Tue, 03 Oct 2023 14:44:55 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e7-1821\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6177,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit colormap, non-interlaced","md5":"489cb665574d518e471806b739744163","sha1":"db57c0fc057325f1529857d0819cb642de07defd","sha256":"f9d3ba3803ebd4c331ecea67475fe7e729ee3cdb603944460edc06c61aa8a593","sha512":"33f151dc5daf7106069ef5db0ec7f1b321048f177b32e13926854cd8fb4d23a3f7c36d7daf87cca1255840cc89f6726c83e553ea3bd628d9bbe63316a75ff39e","ssdeep":"192:SHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHkHHHcaeJgyy4EwauTs9du8qr:eJbNEAO7COF01Oq","tlshash":"afd18e48d3959ce04b343f3b0fbc9a41d4a65094218c4a9749389dff87b678eb971af2","first_seen":"2026-03-12T14:58:57.316536Z","last_seen":"2026-04-11T12:58:15.552336Z","times_seen":3,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":111,"dns":1,"connect":17,"send":0,"wait":17,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/1-12.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.348Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/1-12.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 96616\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-17968\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96616,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 455, 8-bit colormap, non-interlaced","md5":"66b2139e5de1fbeec46500db0d1859d5","sha1":"b5c591cb7aefe0911fa79b564e45c81d2a175917","sha256":"0a1a95391f8efb0231e25a58a7ddc1da226182b39d7db6edfd409e82aae1ebbe","sha512":"edb8d82601fc559f01b91c1e8a5bf9762d6c2371d5eeb83287231e00796c4ff0b77ec900f62c2c77186ca02dc9a8b88ca178a96084db7107b4ab2b465f8b4f5f","ssdeep":"1536:n10sENePRdRuppne2XDtEEn/ifItd0OmKclGoLCREZ9tgNCQFfblva/TCzz7vgHJ:+tERWjne2XDtEu/7wYEzLtgwMfbw/TyE","tlshash":"199312311764ecd95572a0b071bb5c41b00809a9b5e3be7a6a895cd4f2c15eecaaf3c3","first_seen":"2026-03-12T14:58:57.306187Z","last_seen":"2026-04-11T12:58:15.554435Z","times_seen":3,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":109,"dns":0,"connect":0,"send":0,"wait":32,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/03/name-3.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/03/name-3.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 712\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-2c8\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":712,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit colormap, non-interlaced","md5":"7eca7a9122198049757d8d4c7b28904b","sha1":"6cdf02db0bfce972bc621095baaa8acba37a15c2","sha256":"b0fc5ac1bd31465845ab70b0ae9bb51c2c429252e4ee0e6c3a91310c5aadc6d9","sha512":"2dd10aa833b8e8b9f6ef07edd18f4b9397706da9afbd196e0a92750c7645e5cd566364e9532c2fea1cdaa312e10d9715d870cf6d9e95872bb70f9fff6acd327e","ssdeep":"","tlshash":"2d0144e098b56dacd0a37b63b2b307e66ee8d45412004bad58444577f2a32a9935c904","first_seen":"2026-03-12T14:58:57.303529Z","last_seen":"2026-04-11T12:58:15.556364Z","times_seen":5,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":104,"dns":0,"connect":16,"send":0,"wait":16,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"kit.fontawesome.com/2f8bc11e84.js","fqdn":"kit.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"104.18.40.68","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 21:43:48 GMT","end":"Sun, 17 May 2026 22:43:44 GMT"},"fingerprint":{"sha1":"68:2C:9A:93:3E:79:C4:A9:4F:7C:67:91:C5:DD:D4:80:FF:AA:F6:D3","sha256":"23:30:F3:82:6A:12:7D:FC:FD:2B:DC:77:90:BA:22:FA:FE:28:51:07:4A:5F:54:D2:37:CA:F0:99:12:97:71:6F"}}},"request":{"raw":"GET /2f8bc11e84.js HTTP/1.1\r\nHost: kit.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://lisskins.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Sat, 11 Apr 2026 12:57:52 GMT\r\ncontent-length: 9\r\ncf-ray: 9eaa28d67e47568d-OSL\r\naccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: max-age=0, private, must-revalidate\r\nx-request-id: GKVOzY1N0UC7xP1atYOh\r\ncf-cache-status: MISS\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with no line terminators","md5":"722969577a96ca3953e84e3d949dee81","sha1":"3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5","sha256":"78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3","sha512":"54b2b4596cd1769e46a12a0ca6ede70468985cf8771c2b11e75b3f52567a64418bc24c067d96d52037e0e135e7a7ff828ad0241d55b827506e1c67de1caee8bc","ssdeep":"","tlshash":"26500000000c000c33c3030000000f000003030000030000cf000003000000c00c000c","first_seen":"2023-04-05T07:39:32Z","last_seen":"2026-04-11T15:28:07.534834Z","times_seen":25336,"resource_available":true,"data":null}},"time_used":581,"timings":{"blocked":39,"dns":36,"connect":1,"send":0,"wait":482,"receive":1,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/3.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.681Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/3.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 18257\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-4751\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18257,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 450, 8-bit colormap, non-interlaced","md5":"49a4b70229a18899d1ecdbf926f1e4fe","sha1":"671d5cc2569d837435adabe3d334c51d0e8d9baa","sha256":"8c17e97b1c0a006164258f5debd28114620a826aad8788768c05bfb6655512af","sha512":"771fb9ee3604b89c1e39596f7eb7d48c642eecfe4aa23e830eef93b60bb5b7509e40d3dfdf3394212fda52111a04f364008e174e468962f0f51697e5ea484fe5","ssdeep":"384:KBm2eZZZqziW4Sjc5Th+g/yiN+UyEB1kQ:KDoPqzivX+qDkQ","tlshash":"e882d0ab4b56eacaf71d79b1497408dde0fc283f1d53bcb18f1281b971c44e4578a924","first_seen":"2026-03-12T14:58:57.314228Z","last_seen":"2026-04-11T12:58:15.558168Z","times_seen":3,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/favicon-190x130.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.949Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/favicon-190x130.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 18072\r\nLast-Modified: Tue, 03 Oct 2023 14:44:55 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e7-4698\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18072,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 190 x 130, 8-bit/color RGBA, non-interlaced","md5":"017946d7fa3af80a7baac58a1f39542c","sha1":"0b5ade08a7e3ab0e33b2e01101ea630935213fae","sha256":"247126b1c37d03c75da4392212d326f011bf0885adf3550fc7cded0cc6b0a7af","sha512":"02ff1123a963ef3225308c6d99d0c329738aa288234d0b6e141c0c4a8ca5ec495794ec2191a43f219e3e2fe82cbc6a079aa5333c8ca588a6373fe24f3d322d51","ssdeep":"384:KSjAheD7ft5JbDz8PAltdTPErRpzIHI3PO5uepFlxD+ZXkI:Pie3fXJPgIrpPEdHC1D+ZXZ","tlshash":"4f82d18f520fdffbe261b253b25d995f00f10ba43e43108973a8198dfa7b91121a992d","first_seen":"2026-03-12T14:58:57.312238Z","last_seen":"2026-04-11T12:58:15.559158Z","times_seen":3,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/05/favicon.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.948Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/05/favicon.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 26230\r\nLast-Modified: Tue, 03 Oct 2023 14:44:55 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e7-6676\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":26230,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit colormap, non-interlaced","md5":"5765e12dde5b19c381ae9e35aaab3051","sha1":"09a68e68f2f93be2c4726243f9366e2f4aded05a","sha256":"ef1180da697ec67b9e873429f036f996b91b031669bbd883fadd10379284c6e4","sha512":"f20ac85bd86dc19ab49cae298112b17c2867a7f3f81fb8e774870ddc686376773464844c21960e51abb4c0a18dd3f42d16535e35845696d29e78db1e7b77f965","ssdeep":"768:M19Tv4RxUuXGG/9RrIAJm9H5Vs1l5b1yV7wg91y/iTYO:U9j4RxUuXZ1L+H5O6wgnYO","tlshash":"25c2e142dfc1d8e3cc199532edab06d9d8a3725ab84d6503693c920b8c62b3367f0dc9","first_seen":"2026-03-12T14:58:57.305256Z","last_seen":"2026-04-11T12:58:15.560086Z","times_seen":3,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/uploads/2023/03/name-1.png","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/uploads/2023/03/name-1.png HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/lichnyi-kabinet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: image/png\r\nContent-Length: 989\r\nLast-Modified: Tue, 03 Oct 2023 14:44:54 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e6-3dd\"\r\nExpires: Thu, 31 Dec 2037 23:55:55 GMT\r\nCache-Control: max-age=315360000\r\nStrict-Transport-Security: max-age=31536000; includeSubdomains\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":989,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit colormap, non-interlaced","md5":"c8da80f245241123019737f638c634fa","sha1":"9639ccbefb26139fc13b57ec2daf13d62f442a41","sha256":"8aecc386dae6c85fc91038b88db9f27463ca27bcf5a706c09e65cb3a2d1da50c","sha512":"bccc88be6e9517e505b7f60a469dcb162be2f148e8911b1aaccafc6e1fad2e20e5ba1b3a7de976cf5f555803d094c5fe764a9b8beb4b38dc354c7eaf31c66d57","ssdeep":"","tlshash":"8411989d53c9087eca74f426637126256bb7a8e40737978f141ac270b17dde705d4293","first_seen":"2026-03-12T14:58:57.321565Z","last_seen":"2026-04-11T12:58:15.561432Z","times_seen":5,"resource_available":false,"data":null}},"time_used":124,"timings":{"blocked":107,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lisskins.info/wp-content/themes/vulkan/fonts/PTSansRegular/PTSansRegular.woff","fqdn":"lisskins.info","domain":"lisskins.info","tld":"info"},"ip":{"addr":"80.89.224.136","port":443,"asn":204601,"as":"Zomro B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://lisskins.info/lichnyi-kabinet/","date":"2026-04-11T12:57:52.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lisskins.info","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Apr 2026 12:08:01 GMT","end":"Tue, 30 Jun 2026 12:08:00 GMT"},"fingerprint":{"sha1":"EF:A4:A1:54:69:28:68:12:1E:C9:43:69:C3:9D:BF:1F:8F:7C:80:4D","sha256":"96:2D:03:95:BF:F0:58:F1:70:E3:BD:E0:63:8E:25:4E:8F:11:1A:84:19:95:B8:5D:71:00:34:06:57:71:40:2F"}}},"request":{"raw":"GET /wp-content/themes/vulkan/fonts/PTSansRegular/PTSansRegular.woff HTTP/1.1\r\nHost: lisskins.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lisskins.info/wp-content/themes/vulkan/css/styles.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Sat, 11 Apr 2026 12:57:52 GMT\r\nContent-Type: font/woff\r\nContent-Length: 202284\r\nLast-Modified: Tue, 03 Oct 2023 14:44:53 GMT\r\nConnection: keep-alive\r\nETag: \"651c28e5-3162c\"\r\nSet-Cookie: lcid=0000\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":202284,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 202284, version 1.1","md5":"2fc0b0b6e08f29b542fcebd223a11961","sha1":"12019c463608f9ced35a0a100ebd634afdf85dee","sha256":"2aa1444e4f47fbc4e0cbe35540facfc266e9fac6377e84098f76afd108f956ed","sha512":"73ecf9ae6b6f080e13e366a87ac9141b9c20aa1b1286edd6db0beccfbba3997e4861332f80939bee8204a298d66f4d3dabdb15fc4dbc8466eeedfbf3f79700f5","ssdeep":"6144:UwCWC3368A9nXLHcvuKOwWQApulxw19TGs2:UwCWCHPABbcvAwWQApurw19TGs2","tlshash":"ea1423f7ab4f72276381ca78ca20075ede6502703d253ac8b3271e13e7d9a12d7a51d6","first_seen":"2023-04-14T15:23:14Z","last_seen":"2026-04-11T12:58:15.562184Z","times_seen":128,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-11","alert":"Sinkholed","trigger":"lisskins.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}