{"report_id":"f1910438-1a1d-43b6-a13b-70c3140c1acb","version":6,"status":"done","tags":["phishing","microsoft","outlook"],"date":"2023-11-20T21:18:06Z","url":{"schema":"http","addr":"fixit-gh.com/asdf/ZHVzdGluLm5vZWxAdWdsLmNvbQ==","fqdn":"fixit-gh.com","domain":"fixit-gh.com","tld":"com"},"ip":{"addr":"192.185.121.225","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"title":"OmJwfgKXr1ZLwDdo8uJ5jqLRV2O94ahHihzCuTLE6WR3T"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T12:20:51Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"fixit-gh.com","ip":{"addr":"192.185.121.225","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"2023-07-23","domain_rank":0,"first_seen":"2023-07-24 17:14:54","last_seen":"2023-11-20 16:55:17","alert_count":0,"request_count":1,"received_data":327,"sent_data":502,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30 02:15:09","last_seen":"2023-11-19 18:12:10","alert_count":0,"request_count":1,"received_data":26134,"sent_data":467,"comment":"","tags":null,"fingerprints":null},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.17.3.184","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":0,"first_seen":"2021-10-20 07:02:03","last_seen":"2023-11-19 21:12:47","alert_count":0,"request_count":1,"received_data":13250,"sent_data":435,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2023-11-14","domain_rank":0,"first_seen":"2023-11-16 01:11:30","last_seen":"2023-11-20 03:58:23","alert_count":0,"request_count":11,"received_data":281334,"sent_data":7984,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6lsNE1Wu35R/jq-Tj97DNYmdDSMsaa4p10Ob9HRdcywE6T9A3kCB7a893lioHUaukb9IHfWHJXXILjewu6khYaYmVdfDFWe","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"introduction_type":"scriptElement","is_inline":false,"md5":"a46fb81762396b7bf2020774a2fb4d9e","sha1":"fb5edd7a663dc8dda7ec10815a7cd82a30fc98a7","sha256":"d30b6114fb9496ae46b2a8cdf59379c8ffdb957534bd1dd73e626c7c61c7e67d","sha512":"40759595b05808dd911075918bdcc32fb91362019bdfca24827043b8e54116e6ebe7362050ec72182b66481f1dc8d4ec4c8942c984fd597659313d71ad60dc33","ssdeep":"1536:aLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6tv:+kn6x2xe9NK6nC6N","tlshash":"378319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:10:49Z","last_seen":"2026-05-06T15:44:41.639242Z","times_seen":61413,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6yyocUy7H7j/sc-iEhs7IPkAEhgoeuBFiWxxOtQFDJKHTmlM6s1aZ2eSwHlUkvKqPfJoxHdiUN5dZgZ1STmyesXJZscT6xF","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"introduction_type":"scriptElement","is_inline":false,"md5":"1131850fec4181a48b05e606f34a6419","sha1":"7c306f0744838388875090c87476b8f7623921d2","sha256":"aa519046e89091089e065ec3dcf50626d2a1141568e51e9cdfba3c48613c89e9","sha512":"4ce136e968a4f17d0a62b8b682eaca2d4222486915a48a80e1effd6dbb25e4faede162da8a64ff26119b53ecc497f7fea463b2ea8ad58bd88771316a2739ede9","ssdeep":"192:PH038HSOBW3c5Q5jZddU5t5ZCt9l3Zi4C4bRazyYq3kC5q75BQVVI+WJ8k8ekwFU:dVHY3pGKQQbo/7+di5VPEkS","tlshash":"2ce26673d31d0b7e42aa44ccacc79b4d9bc8691b1b1c0bf66e78567668cd4adbb201d0","size":31498,"data":"","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"3d1074fb6b65f4b9536871023e610d5a","sha1":"4c714779bcd18078513b46b165790086ba8dccb0","sha256":"b57f451d459d16b81d0fcacdb0c79d84f114df0ec897bcbff79d72addd7cf688","sha512":"fd0786f375bb1eed65022c9cc6a2456e975d3e07c7e562397ae1ac0a77f9021e089df0d5df80177c556d437b261921916f5c8c0fc8b00d7c1a20cacb64398c01","ssdeep":"","tlshash":"308000c0c0c0003cc00c00f0c030030c00c3c0c0c00c3000cc30c000300c300300300c","size":31,"data":"","first_seen":"2023-10-19T19:11:56Z","last_seen":"2024-08-21T04:06:21.260747Z","times_seen":26506,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"data","addr":"data:text/javascript;base64,ZG9jdW1lbnQud3JpdGUoZGVjb2RlVVJJQ29tcG9uZW50KGVzY2FwZShhdG9iKGRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoInNDRVRiS1hmT3pNTkJFUCIpLmdldEF0dHJpYnV0ZSgiRlJJbnptdmpWRWdlQ2NTIikpKSkpO0RHZFlOaXNxcHJCaERPT0xZQkt1PSJ0UmxGY0dZV1RQWUNlYnoiOw==","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ee46e80dc3649fed9e67c23e9c246775","sha1":"db28c8b4ea9d990246f125ea53d46471f42c27a4","sha256":"b49abecd296ba3193cf8ed82894c6bf3ce1f7852e3ea098f75cb0ee47584796e","sha512":"86121209cddbc19a4a581a335a98ace280ff0841ede9682e59c09ed01cd613ab46f16def392ec72867ac7e55a5f9e369532f671f26789ad4c4dcf87c19653324","ssdeep":"","tlshash":"2fc0803611d5717a0d5a11a743294ad5d5d85964fc5f9d50d807590256cd95a11441c0","size":163,"data":"","first_seen":"2024-08-20T18:35:06.705255Z","last_seen":"2024-08-20T18:35:06.705255Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-05-06T15:45:50.440336Z","times_seen":697300,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":[{"md5":"e0ec1781346a82e5f1c8ab67af0537bf","sha1":"6ee97060a4b57739e7855cdff196e2e4b6ee9cca","sha256":"ae990afe641457a8840a8c02e068bcfb21a1637cc416e495925398ab044f44ac","sha512":"92917d01ec9b824e3a612b0cc8b4e74b00baaf3f3e0772f9e318a9e21b3d75598fdb397d9e4f1d750ba9fa12731dbe05eac4cc435c4a28ab70dd6eb33bd08ac9","ssdeep":"","tlshash":"002133840a4315c059f1e275bf0b1b0ce52306b38248d381b694ae363fa135abab9ecd","size":1148,"data":"","first_seen":"2024-08-20T18:35:06.707075Z","last_seen":"2024-08-20T18:35:06.707075Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"27c4da948858ee025e5b2ada0640e9dc","sha1":"15e188338dc2992d10edd7022ac53080e896e97b","sha256":"048e7af4f4f19662eea7df5e2f8c63458cbe38a771918b0668ab9867e741283a","sha512":"00662c47734328cd4c3e33c154ddeb2d97d431dc6ba58287b98c4a26c05c3dbcfa34602df2abe3657b4e7cdee36278f52ec44dc7243eddbd326eb8f8c4637eeb","ssdeep":"192:TkjiMnBWPYocjx8dQu2r+7dPAtCrfNF/eHvlueh+FhFJ0:o3+ZAx8eu2KxPAteRMv0eh+FhI","tlshash":"a332cea0e0a2743702bb88d668d55b2af1e28249d662f49473fc53f547ced98fe32d40","size":11321,"data":"","first_seen":"2024-08-20T18:35:06.70788Z","last_seen":"2024-08-20T18:35:06.70788Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"6519cd564998e8fc4d089e15005de490","sha1":"43afbddcfc5c827edd7f8c73a3fc6fb23ba9f990","sha256":"048e540c6d2057057002090bb2d73561d2b0f172636d743fc353ce6921995ed3","sha512":"341965833f4d6691976df237f11a44eaf3a9aa8d085ae4488ecfd19d740d251c7e0e78b51f24260738360c0190b400321c12b07f8e3071fa36f1d2871f19bfe5","ssdeep":"","tlshash":"e271b5b490b6b83730339dc3299bbf697cb18829c996208057ed926437d9eb77d03d60","size":3692,"data":"","first_seen":"2024-08-20T18:35:06.708701Z","last_seen":"2024-08-20T18:35:06.708701Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a27c88365ce7cd8f68390c4c024e29e1","sha1":"1d15a8d192608f93096ef8d9aa623c360dbb7351","sha256":"0ca2b3df8f04565300bafcd6c929a1d310d2a761ff9f8dda200f3f6cffab50ce","sha512":"1ce1d149845e13e3f312f848dcbd973d241a0815da5aa7202a2db68160a84a21e9585bc115a3020ffc995139a8a25f44c0f28f51e5f9a9099753708e937d6584","ssdeep":"","tlshash":"e671c264acf3509185cbd30cbbe0ed861be0b1a3919a5656bb4c874ec7857ec8957f02","size":3574,"data":"","first_seen":"2023-11-07T13:07:13Z","last_seen":"2024-08-20T20:33:21.268002Z","times_seen":72071,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"fixit-gh.com/asdf/ZHVzdGluLm5vZWxAdWdsLmNvbQ==","fqdn":"fixit-gh.com","domain":"fixit-gh.com","tld":"com"},"ip":{"addr":"192.185.121.225","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-20T21:17:50.707925712Z","timestamp":1700515070707,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /asdf/ZHVzdGluLm5vZWxAdWdsLmNvbQ== HTTP/1.1\r\nHost: fixit-gh.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 131\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Mon, 20 Nov 2023 21:17:48 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":131,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"bf65a3062ff2169e7c27deeac412254e","sha1":"2aadf117437a0073427ba9233e73e34f16630f10","sha256":"e376b0dd7032946df1ccb52d0be0fac85c0a73ccc094917b624180a06c8a2c07","sha512":"2bbc038ff3099339832ba2e6667629ff3e160fbf340421ad1199409753048a48eda1cda7072ac485b405c59657a6003e4cdd1b0c3e214f7dd18f0c7fd48033ea","ssdeep":"","tlshash":"bfc09b970e01c540465d0895c563e71d574640941a49d4c5c4a0c4656785bad4bdad9d","first_seen":"2023-11-20T22:17:59Z","last_seen":"2023-11-20T22:18:06Z","times_seen":2,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"cdn.jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-20T21:17:52.658571268Z","timestamp":1700515072658,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 5.0.2\r\nx-jsd-version-type: version\r\netag: W/\"260c5-fByeBXPlzqi603M74vxjqoxo6o0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Mon, 20 Nov 2023 21:17:50 GMT\r\nage: 14038312\r\nx-served-by: cache-fra-eddf8230097-FRA, cache-bma1662-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 25360\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":25360,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65306)","md5":"abe91756d18b7cd60871a2f47c1e8192","sha1":"7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d","sha256":"7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b","sha512":"bac54101debafcda5535f0607b5f60c2cda3e896629e771ad76ac07b697e77e4242d4f5f886d363b55fc43a85ea48a6bfc460a66f2b1fc8f56b27ba326e3a604","ssdeep":"1536:d0bwW83RipVVsEBpy0cuJcf22RWb5CyVUpz600I4fM:d0bwlyVUpz600I4fM","tlshash":"09e3a3d7f581241dd4a7c259a0d1bffd052f4586e3025babb0277bb88b8a6c70963e4c","first_seen":"2023-04-05T03:16:49Z","last_seen":"2026-05-06T15:57:32.919566Z","times_seen":95869,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"challenges.cloudflare.com/turnstile/v0/api.js","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.3.184","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-20T21:17:52.777801972Z","timestamp":1700515072777,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /turnstile/v0/api.js HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 302 Found\r\ndate: Mon, 20 Nov 2023 21:17:50 GMT\r\naccess-control-allow-origin: *\r\nlocation: /turnstile/v0/g/9914b343/api.js\r\nvary: accept-encoding\r\ncache-control: max-age=300, public\r\nserver: cloudflare\r\ncf-ray: 8293b8d87a80569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":12961,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"ea2bed9abfbbaab47a5857cef708ac45","sha1":"2b0e28b59e8aabf6510275b9e5ee119b38614640","sha256":"4d9004b75ab009a232936a32f36fd60db7885efbf0ea7b0877c9963e619e8246","sha512":"1975b6e22026414f8c7295c778e7a7f6cc9064e69cb04c8093cb605f1157eea483fa5992237fca1a47f0ac5e2dc126130113024b351c693f371ae0b64c3de25b","ssdeep":"384:hAjsEppR3qjmerx8rjD2XeIaf2y2UVsHG:hrEzwjmerGjDCafaUam","tlshash":"1042c0b30daf7f1537f064da92f1eb271d6284e0fea65115589d25517ecc3a48f2402e","first_seen":"2023-11-20T21:23:19Z","last_seen":"2023-11-20T22:18:06Z","times_seen":6,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6pL2nZE0UX1/bg-fzpPu0HBzhjtb08HAUqI4YLk8VV9yiz7tmb46NVqeFOmPBDBU35y45fH5Y7gybdr2znkPFp8DwnKKY6N","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:57.156Z","timestamp":1700515077156,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6pL2nZE0UX1/bg-fzpPu0HBzhjtb08HAUqI4YLk8VV9yiz7tmb46NVqeFOmPBDBU35y45fH5Y7gybdr2znkPFp8DwnKKY6N HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=1ZHkdc6gtg8VsGM7qSEKIOnC6Rj1CznxHzKaQ3C%2BNj%2BgquUzm1p19ZWb39uG7eAu1Ejmalp1Su0rmlZt%2BMqGUXktVTxO%2FcCaEPtIEo0KuyGGjecw2iWzok9JGUvEyiifUCIFqeaWLdOzK7k3%2BrMv%2Fg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f50c265684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16500,"size_decoded":0,"mime_type":"image/svg+xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-06T15:45:53.712693Z","times_seen":14742555,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6NCYue5CkLg/fi-CgZApSsaYcnbmXKeZ7Z9zEP5J9STMlo4f4s1AiYQnYASjf1JqEVkBgInF8MD4Z56ohCqWG1BaVQezj0q","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:57.420Z","timestamp":1700515077420,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6NCYue5CkLg/fi-CgZApSsaYcnbmXKeZ7Z9zEP5J9STMlo4f4s1AiYQnYASjf1JqEVkBgInF8MD4Z56ohCqWG1BaVQezj0q HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=TL%2B1L%2Fg81deat%2BlSyFa87RG1w0FyQXmxme5mKOAE5keUXe4O1Mv9IwgTNaNZ8b7g0hKz1NPZKAb%2FAirAu9dZPI4lk85OtVnpAbrhvgyQBJkxLFO8td7UAYxjzBX6%2F4B5VON5INcHKgmclUjMtrS5dA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f6ad915684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":728,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- HTML document, ASCII text, with very long lines (814), with no line terminators","md5":"14a6c611d91fc0571470eee36a581c19","sha1":"14723e07ea0b46cedf97d2df157ab214b78bdb10","sha256":"ab566928ffd4e91c6e23fce86a354a8a96e2127053b4e544e36698fe484b9362","sha512":"2c086522c59542ec42c459e9997c2749a621b2255fbb9334852ff5597e66b8608666504d3caf259026f37cdc1249d99d3f80a922f4337651eda2dfec67727a18","ssdeep":"","tlshash":"","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6yyocUy7H7j/sc-iEhs7IPkAEhgoeuBFiWxxOtQFDJKHTmlM6s1aZ2eSwHlUkvKqPfJoxHdiUN5dZgZ1STmyesXJZscT6xF","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.857Z","timestamp":1700515076857,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6yyocUy7H7j/sc-iEhs7IPkAEhgoeuBFiWxxOtQFDJKHTmlM6s1aZ2eSwHlUkvKqPfJoxHdiUN5dZgZ1STmyesXJZscT6xF HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=xOPYj3E3yPIUiTZdlDPZ4LWbXBoY%2BuM62YG1DqtZ8phwtFMwq05dcXnLXlP7RbTR9rCWQ5jPmNR9%2BeTt2vcaxgfTwYAoSkmwbDrvVWKgi2kuWwo38J9CyY%2FS%2BT6wyyr8S4PNBIN3p84PLIfDg5vreA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f31a385684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":31498,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (9001), with CRLF line terminators","md5":"1131850fec4181a48b05e606f34a6419","sha1":"7c306f0744838388875090c87476b8f7623921d2","sha256":"aa519046e89091089e065ec3dcf50626d2a1141568e51e9cdfba3c48613c89e9","sha512":"4ce136e968a4f17d0a62b8b682eaca2d4222486915a48a80e1effd6dbb25e4faede162da8a64ff26119b53ecc497f7fea463b2ea8ad58bd88771316a2739ede9","ssdeep":"192:PH038HSOBW3c5Q5jZddU5t5ZCt9l3Zi4C4bRazyYq3kC5q75BQVVI+WJ8k8ekwFU:dVHY3pGKQQbo/7+di5VPEkS","tlshash":"2ce26673d31d0b7e42aa44ccacc79b4d9bc8691b1b1c0bf66e78567668cd4adbb201d0","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6D9vsw1d5rd/si-G5ck7ccrcV3I08BUOtJJNS624NSQ48EUhv5tL44PUFMDKrsVEe7ThDz5lOcAqAyoRq6aJtVxUPZ1ylSq","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.853Z","timestamp":1700515076853,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6D9vsw1d5rd/si-G5ck7ccrcV3I08BUOtJJNS624NSQ48EUhv5tL44PUFMDKrsVEe7ThDz5lOcAqAyoRq6aJtVxUPZ1ylSq HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2Bj5HDyirw6R7O%2FtqTJ99YegrtPZpEtyWR%2FGCe3NEM0c05%2F%2FDJlMlnqy%2BlxAaQAcsLH3DxRzsYyKmqYPqCM0DwG29Lm9pirX1AEH3gTXACPskLjNnB7bO9ap0u8F17XNp%2Bk5LBxDsudfGkDrYxtU6Ug%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f31a365684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2471,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- HTML document, ASCII text, with very long lines (2507), with no line terminators","md5":"438433876b3689627f41f5a2f5df2d55","sha1":"03f1c5ff97b94f031c9e7d6f76e6fac5ffef3b2a","sha256":"7c1ed6c506cda1dad8cced7ec801246d26c559afe9b776b1f9697bad487254ec","sha512":"670336e638137a5030fe568de499314c5699b8bf2d7cbc3f9a7adc0cd2d8ac835b4fd32707d20d5e3e29bc4f0b1fe6957b2a493ba4368952691c77ca56eea523","ssdeep":"","tlshash":"","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":76,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/3G0YaBOGlXE8tzR4zcphOISBkw","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:57.238Z","timestamp":1700515077238,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"POST /flga9/3G0YaBOGlXE8tzR4zcphOISBkw HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/json, text/javascript, */*; q=0.01\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 34\r\nOrigin: https://fydtc3zin9urq8g.kyxfgpywfa.ru\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: text/html; charset=UTF-8\r\naccess-control-allow-origin: *\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=LAsk7BM7gWasSeH7x4W2w58cGfh7%2FjP5Pv9C67GtqAxKDvhdLPqIbxXE19SBQzAj2ZOevoSOqc77BShV3QKt8Kn7KWFwtNba0hr%2Bf7elLT5JjqY5iaiXzp3%2Fuw1yakL4YTHhzxrRXWF6HoN4%2FmK0wQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f58c8e5684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":75,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"1e5373540c2a2f5dc9ba2cbb88bbb1b8","sha1":"200ea845bcf89387e783768c3dda1b8757e29c13","sha256":"6043aaf237677965bbe0adb0f19ee71a46f11c59f992571118d879134fe06799","sha512":"2cdd92a13c9fa3747843a7d3897ec790e7528f856b115cedd93e64ec255f1aca4c6a9d5764d19775df816f56b37f25a33d35a5c03d7ba9f8cc26f7883fbadac9","ssdeep":"","tlshash":"95a0120e1d09c444b0020046102d2c20404c1043c0431d7a41261b14c3840365eb6410","first_seen":"2023-05-22T18:50:59Z","last_seen":"2024-08-21T09:44:35.680437Z","times_seen":28830,"resource_available":false,"data":null}},"time_used":508,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6lsNE1Wu35R/jq-Tj97DNYmdDSMsaa4p10Ob9HRdcywE6T9A3kCB7a893lioHUaukb9IHfWHJXXILjewu6khYaYmVdfDFWe","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.846Z","timestamp":1700515076846,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6lsNE1Wu35R/jq-Tj97DNYmdDSMsaa4p10Ob9HRdcywE6T9A3kCB7a893lioHUaukb9IHfWHJXXILjewu6khYaYmVdfDFWe HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: text/javascript;charset=UTF-8\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=NpFHO0Xcf7DVFh%2B3NWhlHCNvsd1gzkQnI26W1DKT1%2BNyhWrbTQUxX%2Br9sSCxB0ukfmv8AzYoMziboSz2NLJGwVth5ntALbHAxtJht4R1%2BkVyLARRB1ZfOqdSPwtgXD%2FQ9w9bPHNAmrxoHd4CDaZ5Rg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f30a305684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86927,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (65450), with CRLF line terminators","md5":"a46fb81762396b7bf2020774a2fb4d9e","sha1":"fb5edd7a663dc8dda7ec10815a7cd82a30fc98a7","sha256":"d30b6114fb9496ae46b2a8cdf59379c8ffdb957534bd1dd73e626c7c61c7e67d","sha512":"40759595b05808dd911075918bdcc32fb91362019bdfca24827043b8e54116e6ebe7362050ec72182b66481f1dc8d4ec4c8942c984fd597659313d71ad60dc33","ssdeep":"1536:aLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6tv:+kn6x2xe9NK6nC6N","tlshash":"378319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:10:49Z","last_seen":"2026-05-06T15:44:41.639242Z","times_seen":61413,"resource_available":true,"data":null}},"time_used":216,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":191,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6tSkfrfqBVQ/lg-TWD1m3zDTYIRjd7zHafyKC5uxCeQf6CWZn7iRmgHDTDDnsM1PeGpZ6LC55fTDYE5zyu8JTnji1NwK486","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.849Z","timestamp":1700515076849,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6tSkfrfqBVQ/lg-TWD1m3zDTYIRjd7zHafyKC5uxCeQf6CWZn7iRmgHDTDDnsM1PeGpZ6LC55fTDYE5zyu8JTnji1NwK486 HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WSHuwEJfvs23fUVZBXjX7Q2JvgI%2BG1DAm02GPQREtsVP1QHim1YqyW9%2Bnmvo8KyVQvgSKHrdCxWE%2F4yfhPB3QgT9AsQwsVZmcdYy06FwCnKD1tndqnbM5Z7iT1e12RjJqE908PhctfQ%2BZFdX15MFXA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f30a315684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5747,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- HTML document, Unicode text, UTF-8 text, with very long lines (5880), with no line terminators","md5":"30813bb748f23a75975fa2b52b34ddc4","sha1":"72bcd9e070f8d51bec4e25f2acc76a0d23911c19","sha256":"cd1841f138dc3e9a2878255cf794c8d9dc72c8f04e43a4bd799c69e4af909ccd","sha512":"eb3aa5b2c2d22f12ff1568030250a7fac92b131685b8c046a8c7758db83aece9e1b33d8911b86d8d3ce5284e65da51813bba918b553803fca301dd6e5b0d130a","ssdeep":"","tlshash":"","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6SDf724XDdk/bg-9xA7D9zxOEPxbyRVZymSHxwPe6kqIE0SOTWpogOMPf6BijZoAmfETeCCvd4AwtGWhpv3gbDsaGje12kD","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:57.158Z","timestamp":1700515077158,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6SDf724XDdk/bg-9xA7D9zxOEPxbyRVZymSHxwPe6kqIE0SOTWpogOMPf6BijZoAmfETeCCvd4AwtGWhpv3gbDsaGje12kD HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=hFMQOCMxx0J6UDTopSbFAYRQOQ6ylz5%2BiFiIb8Nfk275JUH%2FRyKIq7dkxFfzsbKLM%2B2c39Qo6W7hRHTZqra5HcLfCzGFB8qKTsdu92gVwAJW9zpRG%2F0MQ2TKSTEUuFUD46wPXw3HhIX1DVfLBLkLkA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f50c2a5684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16500,"size_decoded":0,"mime_type":"image/svg+xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-06T15:45:53.712693Z","times_seen":14742555,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6mFx3XLWVpC/st-2HWtkGxsHmFIDbxZGlOxLCEnZFUuefTJPIJZJyw5sIPi5l5UupjFUUdZimJQQL0oLrjQcFq1MAYhObu4","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.841Z","timestamp":1700515076841,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6mFx3XLWVpC/st-2HWtkGxsHmFIDbxZGlOxLCEnZFUuefTJPIJZJyw5sIPi5l5UupjFUUdZimJQQL0oLrjQcFq1MAYhObu4 HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: text/css;charset=UTF-8\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=ITEZjYqLhuMMmCVL7lwTnSsx8zhoVqy9JbPHNmAp70Sc15qmWQQHu3wa9qFxn6OBffqVNHK89nMYNPQAapVGL56BHUEoNjrpBM8YwpRfY3nJ%2Bne4tJRMUP7Bir3LnnA1b5lOwobqwQJkhEH2HSjq2g%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f30a285684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":96562,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"218d360be0606d518a52bd9ef894663d","sha1":"a30928fc4dbbc6f2a5a7e272f7b6b01c64f7a846","sha256":"19cefc3f3ec199dc5701b63d9d5ebe55af815a352f97423f6cde41f71aecc547","sha512":"a031cdc4cf9f36468d137f63cb2686dcb3b4aa57b92f989fd3f5f317d52d9f99c5914dd6e89a83ffa759377695d325a298e320994c2b3f8e33d302a3ce79b324","ssdeep":"1536:+UB/w+krAazA/PWrF7qvEAFiQcpmXt93TBc65W:+10fTBNE","tlshash":"2f93b5d059203c259037873561c1bd8b66216502f637babff6622db9cf9968b0f31f89","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":151,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-20T21:17:56.717Z","timestamp":1700515076717,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ== HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:54 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WVitj7uDJ2toOkWcOZZw%2FfpuvTj34XS09b1Ggqw8XWNPX2iPIk1qB9tPIsMgcYdAk3WH1UVd4hQkKgdFPhXGPU61Ab4hNkeudeTydepq%2FE7INg59ej4tTYzw3GKaP1VHtXbEHFPo2%2FUzrbF5dkGnfA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f249835684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15405,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with very long lines (15405), with no line terminators","md5":"4ed389a5ba8cdd4a7c27ce119ac04b9c","sha1":"f64cea1044459e7d7406e6f10da1761fd553d680","sha256":"9254ab58d23b37711f41ace1b5809a26b1c0c3e72440f0b1229b4c015b6c4df1","sha512":"d99d41f9e76dcc288c8fc9a0e2ad4944fb25ae75edab708c70103e24394c57f5f9a0891003a7ba70e8078f40acb0ee3a8bcfd263470c879afcf0be0141bcf604","ssdeep":"384:gkFP6ULJJ3R5smEq+ZLFT3aGfKxjDIeaU8jgdX26isD+:ZFP6ULj3RmnhT3aGtrTgdGwD+","tlshash":"8c62d76ec5181e88f764e306f12a6aae943473df2cc1dc1587711f9a9c3c392abe911d","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":72,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/6G6aErqzxtP/e-dxN7Z1aQIpQKNElDpC3m4SUN4FKGgZEhTW8mYppy1trPy1juV0vMA8WXn3wHqG1926CxZCKqzsYuwV8S","fqdn":"fydtc3zin9urq8g.kyxfgpywfa.ru","domain":"kyxfgpywfa.ru","tld":"ru"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==","date":"2023-11-20T21:17:56.851Z","timestamp":1700515076851,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kyxfgpywfa.ru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Nov 2023 16:30:20 GMT","end":"Mon, 12 Feb 2024 16:30:19 GMT"},"fingerprint":{"sha1":"C6:4A:69:0E:A3:07:F7:CC:EF:AD:8D:76:07:EA:F7:D9:6D:40:98:D0","sha256":"B7:27:92:95:C2:5C:01:D4:7E:F9:7D:E2:79:AC:F9:F7:C2:8B:6C:A1:F0:01:18:6D:F3:D1:84:45:85:6A:FD:13"}}},"request":{"raw":"GET /flga9/6G6aErqzxtP/e-dxN7Z1aQIpQKNElDpC3m4SUN4FKGgZEhTW8mYppy1trPy1juV0vMA8WXn3wHqG1926CxZCKqzsYuwV8S HTTP/1.1\r\nHost: fydtc3zin9urq8g.kyxfgpywfa.ru\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fydtc3zin9urq8g.kyxfgpywfa.ru/flga9/0MCXZo942lswwTvQFDHOxCxVrSUJjIkfryhX5Nqhkj3m5MQpTsBGTFTHcPxyzew9mMs4gqkyNvdw7giTPZwpMQJXrlS?id=ZHVzdGluLm5vZWxAdWdsLmNvbQ==\r\nCookie: PHPSESSID=1c530j2lesphimqq1qj2apb004\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 20 Nov 2023 21:17:55 GMT\r\ncontent-type: image/svg+xml\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BW6e4YFVwvTuQPBLTR69c0ILg6q3%2BhGAjtSaAkFfaIFvpp1dtvsj3SSUk7y0Hd0aqvtm%2BNdjtF4IkYn7uXn7E5lkGRM46a90%2Frp83shGD56RarmQtf9ksKDag9rBoL7MesPizhfJCgyw%2BOFoLiST1w%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8293b8f30a325684-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1195,"size_decoded":0,"mime_type":"image/svg+xml","magic":"HTML document, ASCII text, with very long lines (1223), with no line terminators","md5":"4a12250fa52a85d5342c8ab579bf225c","sha1":"894f5d3bc7eaae0efcaff984240448bf6d459646","sha256":"b4a92547faf88c4a3d5dcaa3229d4175cbc8ce4506b704b64efcee3b16016fba","sha512":"379568e5565057a898bb9c4477dd0feba2384b69aed33a18d357f6e248b3d37df9c9a6d2bcd39c8bcf5b42e85c9a880c6aa5f37dd185bec31ba7b37f5bc65820","ssdeep":"","tlshash":"","first_seen":"2023-11-20T22:18:06Z","last_seen":"2023-11-20T22:18:06Z","times_seen":1,"resource_available":false,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}