{"report_id":"f487fcfe-06aa-4c48-acee-ec78e9aceb08","version":6,"status":"done","tags":[],"date":"2026-06-03T12:18:23Z","url":{"schema":"http","addr":"portal.rodiviasdigital.com","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"title":"Pedágio Digital","dom":{"size":24253,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7703)","md5":"e0c4eda7593824297dc70f6a165b32e9","sha1":"805c18623a35929e6e20372978366d0d8f108f87","sha256":"1eedbbaeb8efdd56095976f36bfe5e2b8a4246033a35c69c720a7a4ff2d6850c","sha512":"91cd96ed7f92a67f68b996dd92da5a02d601ae798dd55155af8671fe51bc0de6834c8405440b7356d985602704b924dc976dee7625fffcf5102099944c0290f4","ssdeep":"384:DPdL7kLUM1WU2Q/PXQWB6gbzfUPE2EKxS7uJIVYC:DPdnk9/QUfxPeNIP","tlshash":"e2b23a6575b6085a689381f3f8e5ef093124d083d70ac7acb9fd0461bfcac5618b76ac","dom_hash":"domhashbe54762c516863a1fe1797e62a0e9b1b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"portal.rodiviasdigital.com","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-08T12:18:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":2}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-06-03T12:18:02Z","timestamp":1780489082,"ip_dst":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":41246,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI","source":"{\"timestamp\":\"2026-06-03T12:18:02.135999+0000\",\"flow_id\":1664895141214635,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":41246,\"dest_ip\":\"104.26.12.205\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2047703,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_08_22\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2023_08_22\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"External_IP_Lookup\"],\"updated_at\":[\"2023_08_22\"]}},\"tls\":{\"sni\":\"api.ipify.org\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3437,\"start\":\"2026-06-03T12:18:02.129451+0000\"}}"}],"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-31T22:18:21.058888Z","alert_count":0,"request_count":3,"received_data":97781,"sent_data":1637,"comment":"","tags":null,"fingerprints":null},{"fqdn":"portal.rodiviasdigital.com","ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":14,"request_count":7,"received_data":222658,"sent_data":3379,"comment":"","tags":null,"fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}]},{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":117330,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2026-06-01T07:39:12.914211Z","alert_count":0,"request_count":2,"received_data":815987,"sent_data":844,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]},{"fqdn":"api.ipify.org","ip":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-01-05","domain_rank":8166,"first_seen":"2014-10-06T12:38:43Z","last_seen":"2026-06-01T13:23:11.84445Z","alert_count":0,"request_count":1,"received_data":269,"sent_data":465,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-31T22:21:48.210615Z","alert_count":0,"request_count":1,"received_data":8690,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/api.js","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad80ed5dbe0310a36b03386f249f94b1","sha1":"c35907f4663a54e6120b4e7a81ceec80b32f0af6","sha256":"65197d24711409b067937a5660079f16affd72e4cd2a572081837f08e69e526f","sha512":"1f6d1b028f59ebd97a07730d2d90997b3b980f1b43525246606713ef1396e8f509e8cdb77c9b87f1be9af0e3a8539a6a1eb3ec1918754d0422858da178d512df","ssdeep":"96:7DFnVPfEiX8ZO8oU54DkIjmORCcqQf0fmsfy1MsDrjqPxpahkslz9oPyMrRxBRy:7DlXcYLMQf0BsPjip2Raj7BRy","tlshash":"deb134daa47a12b219ab31b8441f801a73b7f013095cda42794d8950ffd07ef913eee9","size":5194,"data":"","first_seen":"2026-05-28T11:43:18.725485Z","last_seen":"2026-06-03T14:49:59.621455Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","size":407279,"data":"","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-04T01:10:31.273256Z","times_seen":39208,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"ff810636b61fe809c173281b0745ea8f","sha1":"1194d39ac7b6a0a8ba3f8c9c870eeaaf758e59f6","sha256":"049532f0ee6d5cc8ebf4409ba1de8f3b7ef4590ad26875228183cb53d1c37020","sha512":"098d31e3be4fb26042ca4b4962ba58e019aac37c4d18196cc5476e2646bd3b509218e51391056114fecee542327f0ce01a05b4845d57c18d5545ced2d62260fb","ssdeep":"96:qII+7uweLo7yxNiZenQH2SJFuTN3ajYVMyGAf:S+7uwvLZenQH2GwWY06","tlshash":"628151bbfcfb3e65485f6372269f9b853234c4271a09c24964b8c2201fd1e193675db9","size":4107,"data":"","first_seen":"2026-05-28T12:29:13.631021Z","last_seen":"2026-06-03T14:49:59.623437Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Ubuntu:wght@300;400;500;700;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Ubuntu:wght@300;400;500;700;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 03 Jun 2026 12:18:01 GMT\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8004,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e05b0cb22b3789a5c72aeef4f1b22893","sha1":"1642b373351455bf8334c30cec2bec1834c01d09","sha256":"e6b653e35fedf32193c15bf8660dd5587cda4f6b0b022c1c6a63d60e69a67394","sha512":"fea9f8d8456a6a33269b58adf47af7d0c1cfbc2c41bb62af53c269475c522b4218d6156726961bb1c1d24b01f202384da7e5729eaeb1dd9cd409f43362bde34a","ssdeep":"192:hbRA3HLg3bg8i5xq7eMVDUn5ZKdgWlR66HZ7H:J2aJl","tlshash":"0bf1bf93145b9404ea434cc223cfbf369d8f61956445c5ba6ffe18c8ace6c3a436ab4d","first_seen":"2025-09-03T21:57:59.125839Z","last_seen":"2026-06-03T14:49:59.611605Z","times_seen":846,"resource_available":false,"data":null}},"time_used":442,"timings":{"blocked":202,"dns":1,"connect":14,"send":0,"wait":34,"receive":0,"ssl":187},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/ubuntu/v21/4iCv6KVjbNBYlgoCjC3jsGyN.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/ubuntu/v21/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://portal.rodiviasdigital.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 30508\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 28 May 2026 03:02:49 GMT\r\nexpires: Fri, 28 May 2027 03:02:49 GMT\r\ncache-control: public, max-age=31536000\r\nage: 551713\r\nlast-modified: Wed, 27 Aug 2025 19:19:15 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":30508,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 30508, version 1.0","md5":"c6bd3f0bf07f006f394988f7ec53b24d","sha1":"1ed27190e58308bbc4f0f14339c9672e841ff42a","sha256":"428ec293d3b79af16abdca704f630c6c951744f572eddbc80e970bc9a94a33d2","sha512":"c60a4f61b6c53f44c53f3c58e19c67ecb04f01f21656ebc27e4f8f26288e75367ea598420086da791f0e840e14b5979e3a773d32748a39e688ee1cc563e26e5a","ssdeep":"768:LvTtYZduSuUagqNr6VTkl6yuwBNFOHqAr5OO8t7:LvJaBt9qNr6V4syuwrFOKXO2","tlshash":"e0d2f15cfee3912e549bcd70befbcbc08c836d251cd579ac2ecd424649a78883909667","first_seen":"2025-09-02T21:16:23.972354Z","last_seen":"2026-06-04T01:38:47.651228Z","times_seen":9690,"resource_available":false,"data":null}},"time_used":262,"timings":{"blocked":116,"dns":2,"connect":15,"send":0,"wait":16,"receive":16,"ssl":94},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/admin/dashboard_api.php?action=log_visit","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.302Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"POST /admin/dashboard_api.php?action=log_visit HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://portal.rodiviasdigital.com/\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 367\r\nOrigin: https://portal.rodiviasdigital.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":367,"data":"visit_id=\u0026url=https%3A%2F%2Fportal.rodiviasdigital.com%2F\u0026referrer=direct\u0026userAgent=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0\u0026browser=Firefox\u0026browserVersion=134.0\u0026os=Windows+10%2F11\u0026device=Desktop\u0026ip=91.90.42.154\u0026city=Desconhecida\u0026state=N%2FA\u0026stateFull=Desconhecido\u0026country=Desconhecido\u0026countryCode=BR\u0026page=%2F"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:02 GMT\r\ncontent-type: application/json\r\nset-cookie: PHPSESSID=03u4ko764tg40bglum4tl1kptg; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\nx-ratelimit-limit: 10\r\nx-ratelimit-remaining: 9\r\nx-ratelimit-reset: 60\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":85,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5df7845f40b16c3cdd93afad17443ddb","sha1":"b7c9bc5475ce021dd5c54053510e477ff82b41fa","sha256":"97596182f01385cf6cd05353a353a67c5c500c7b88ae6587d0d4fbba9ab084cb","sha512":"dda2832220db0197985c71f335891195a64655d58b39a221bbba25a51d2161c3550525d04f5a55029aa6107a879c743379a11a18a38531a58b0d60f07557b4fc","ssdeep":"","tlshash":"56a012a0073038775791174930133b401059e453e8a03004813c01658a1a418240f001","first_seen":"2026-06-03T12:18:28.167562Z","last_seen":"2026-06-03T12:18:28.167562Z","times_seen":1,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.17","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET /3.4.17 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://portal.rodiviasdigital.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::vhhlv-1778775055415-ee1be01c049f\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nage: 1714023\r\nlast-modified: Wed, 03 Jun 2026 02:11:42 GMT\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d4MMbHu1SIw1CoYRhqbPmZPDAoS7buu%2FXfBJMrJJe3t4T7OyXgBtCdM7pv8QGah%2BxmU8SGiTaZ%2F4pnHj4ZrfKaOBfWMBUhhnYVOPWKmRai9DELAQNefvPCgq0C9NLIMOJPqzEqA%3D\"}]}\r\ncf-ray: a05ea3571814569d-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52853)","md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-04T01:10:31.273256Z","times_seen":39208,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/background.png","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET /background.png HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:02 GMT\r\ncontent-type: image/png\r\ncontent-length: 184388\r\nlast-modified: Tue, 02 Jun 2026 21:25:33 GMT\r\netag: \"6a1f4a4d-2d044\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":184388,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1440 x 900, 8-bit colormap, non-interlaced","md5":"5625fb175a5388bce29278394c9c9cb6","sha1":"e39def43aa7a847376d630b0c801008eefea23f2","sha256":"dc69ae3e28f7253d780d3076079baa1315ed8bbe23270e762e1d06aa4a4b45da","sha512":"fe829f41df2fedac9a4aa6503de81ac5b9ef5ef62c4503efce13ad337e17b2eaffe7bd2fde3dcad7ab227ce7e89636f95749c8c16caad9278cc17a4ecbd4a596","ssdeep":"3072:1ouzpWhrYeX/Yv14yWIP+h7ZLg8smZBtnmLuFCML02GOCr7eXk9FomS4mAhi6y:h4rYevnEP+7LgUZBLCMYhOCyXk9FomLM","tlshash":"a70413fc8be29371875033178b909d45799a13552dbbf388a0ada0ef604653d7ea9b03","first_seen":"2026-05-28T11:43:18.704825Z","last_seen":"2026-06-03T14:49:59.622484Z","times_seen":6,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/favicon.ico","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nCookie: PHPSESSID=03u4ko764tg40bglum4tl1kptg\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:02 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1730\r\nlast-modified: Tue, 02 Jun 2026 21:25:33 GMT\r\netag: \"6a1f4a4d-6c2\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1730,"size_decoded":0,"mime_type":"image/x-icon","magic":"PNG image data, 42 x 32, 8-bit/color RGBA, non-interlaced","md5":"5fdf3cbcea06bfffb7f71143fc5a2197","sha1":"e112cd30d70ef9832bc24903e8f3d242bc3e52c8","sha256":"84655c4e6a3ce277d60e87299574a0bc9c2a1ab11c66d8ca9413fc907d40d4cc","sha512":"c0e8894358348a61dedd618b5f200d64849513b01dde412c7d41017c22096cd4b8f6f760e4f3e431a797d3960a34ec4baf7ab86b644b2f01e7c4bfc75dfd23e8","ssdeep":"","tlshash":"fc3108e9f237421d965b96b8050164e1b0cb6e202938c4662e46fb812db3a1968d8d4c","first_seen":"2026-02-17T15:09:31.845645Z","last_seen":"2026-06-03T14:49:59.614405Z","times_seen":78,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-03T12:18:01.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":16892,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (354)","md5":"0532d5e780b5fefe69baf96a8942200e","sha1":"0ae664f1a6bd69e433b9bba0d748fec31a17188b","sha256":"b9ba369bffe2856d88dbd2dd1afe136ad106d53409cf1d755070c08b12c916a1","sha512":"7e3de5633f6c1100eec77858f46d57d2a433a1bd55e3f737a8aa537442a85c3ed2ede569da3f76df8408650e73ff4e2ac807ddc2e475fd917b4ef513d54a7732","ssdeep":"384:FfiWU2Q/zdEeh46gbzfU4Gu2a/S7uJIVYq:F6pEVfY5ANIz","tlshash":"c172fa71b4fa185b209b83a1b566cf4a31a4c103d7068748bafc04b27fcac4968776fd","first_seen":"2026-05-28T12:29:13.603599Z","last_seen":"2026-06-03T14:49:59.616634Z","times_seen":4,"resource_available":true,"data":null}},"time_used":229,"timings":{"blocked":100,"dns":31,"connect":26,"send":0,"wait":29,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"104.26.3.143","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.417Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 May 2026 14:31:45 GMT","end":"Mon, 17 Aug 2026 15:31:39 GMT"},"fingerprint":{"sha1":"B6:67:6F:5A:BE:B9:2A:B2:16:10:49:96:1E:1F:99:2B:44:AF:EA:A6","sha256":"63:A9:BF:FB:46:E0:B8:37:95:77:F3:63:84:AE:78:22:46:11:85:5E:DF:87:F6:4B:EF:F2:2E:24:D5:74:70:39"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncache-control: max-age=14400\r\nlocation: /3.4.17\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::kh74z-1780488956829-9e5c329e7c52\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 124\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P3zEX9QxYEA7MX6jIDoygipiwaOQBE4f2aNijK%2Fa%2BeSKiigImlbonr74KkmThgXXqqh9FpWirxLQzggb7rvgesvVotEwk4QNMK4ukQGFaBvD4xMOT4NIBPzsMfKxUuYzbTYK%2FWw%3D\"}]}\r\ncf-ray: a05ea356efe4569d-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-04T02:31:49.002185Z","times_seen":16096136,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":10,"dns":1,"connect":1,"send":0,"wait":6,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/logo.png","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.420Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncontent-type: image/png\r\ncontent-length: 6971\r\nlast-modified: Tue, 02 Jun 2026 21:25:33 GMT\r\netag: \"6a1f4a4d-1b3b\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6971,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 247 x 74, 8-bit/color RGBA, non-interlaced","md5":"0f062c71f0bb729b504f88f6a428cbed","sha1":"1e16377c8a46941e01b7faade8460cc2d8ea2313","sha256":"d21d21bb7f84a4b4556ca0a012b2a3d0528a6694b471230c4c5a4ba8ccba6b1b","sha512":"96dc8e6a80aa61330fa1be7129931df3337ec4785fc2970ceaa342b6476de7e4c75af6ae11b1af139883eb692aeeffdec923b338d782ed7e5a6901b6725bf500","ssdeep":"192:MXTuulTKCGKf0wbowZCjQfc8L316OH6pr:M6kBGHwbowZmQftLl63pr","tlshash":"6ae1ae9c51ba3ab3e5cb7af1b3792ada44e6c236227fa1c164e3c355184491b8033e08","first_seen":"2026-02-10T06:57:54.570916Z","last_seen":"2026-06-03T14:49:59.620462Z","times_seen":102,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/api.js","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.422Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET /api.js HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 5194\r\nlast-modified: Tue, 02 Jun 2026 21:25:33 GMT\r\netag: \"6a1f4a4d-144a\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5194,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"ad80ed5dbe0310a36b03386f249f94b1","sha1":"c35907f4663a54e6120b4e7a81ceec80b32f0af6","sha256":"65197d24711409b067937a5660079f16affd72e4cd2a572081837f08e69e526f","sha512":"1f6d1b028f59ebd97a07730d2d90997b3b980f1b43525246606713ef1396e8f509e8cdb77c9b87f1be9af0e3a8539a6a1eb3ec1918754d0422858da178d512df","ssdeep":"96:7DFnVPfEiX8ZO8oU54DkIjmORCcqQf0fmsfy1MsDrjqPxpahkslz9oPyMrRxBRy:7DlXcYLMQf0BsPjip2Raj7BRy","tlshash":"deb134daa47a12b219ab31b8441f801a73b7f013095cda42794d8950ffd07ef913eee9","first_seen":"2026-05-28T11:43:18.725485Z","last_seen":"2026-06-03T14:49:59.621455Z","times_seen":6,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/ubuntu/v21/4iCv6KVjbNBYlgoCxCvjsGyN.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/ubuntu/v21/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://portal.rodiviasdigital.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 29844\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 28 May 2026 01:48:20 GMT\r\nexpires: Fri, 28 May 2027 01:48:20 GMT\r\ncache-control: public, max-age=31536000\r\nage: 556182\r\nlast-modified: Wed, 27 Aug 2025 19:19:15 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":29844,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 29844, version 1.0","md5":"9418887ae687a640730a62da6d5cef56","sha1":"c82ce6b645275be73a81d3c9027f540c0add912f","sha256":"3658a0717e347c1db8d80dd565584b9dc56769fbf87909c50a4a7740206ec5f7","sha512":"c700f698292446c2f7b8c6ab8d44eedc78ef1a0053faec159ef3f67d321bc5c9b0c24b8860ca15dcd02b24da947a32f2640bd00b4ba2c6729f3a7810ba441487","ssdeep":"768:8K/8hhK5wKRT6RxuABYd47Sm56257a/1MePoWvV6:88Sh3eTzABYdkR5b5SPoEI","tlshash":"bad2f160971a7d67dfe1de267811eb4f43aa36df0f515a4918da35cc231e38920b43e4","first_seen":"2025-09-02T19:57:23.466991Z","last_seen":"2026-06-04T02:26:23.823078Z","times_seen":14172,"resource_available":false,"data":null}},"time_used":476,"timings":{"blocked":242,"dns":0,"connect":0,"send":0,"wait":16,"receive":5,"ssl":213},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"portal.rodiviasdigital.com/style.css","fqdn":"portal.rodiviasdigital.com","domain":"rodiviasdigital.com","tld":"com"},"ip":{"addr":"64.89.160.8","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:01.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"portal.rodiviasdigital.com","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Jun 2026 20:31:35 GMT","end":"Mon, 31 Aug 2026 20:31:34 GMT"},"fingerprint":{"sha1":"37:F3:D2:59:E0:7B:80:1E:24:D9:92:7E:A9:69:78:D2:96:71:3A:7D","sha256":"EA:A7:CB:83:B7:F6:AD:A2:CB:3D:86:7A:AE:19:69:6F:07:D2:78:7A:82:86:13:09:F8:A2:AC:21:D6:70:99:AA"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: portal.rodiviasdigital.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://portal.rodiviasdigital.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Wed, 03 Jun 2026 12:18:01 GMT\r\ncontent-type: text/css\r\ncontent-length: 5494\r\nlast-modified: Tue, 02 Jun 2026 21:25:33 GMT\r\netag: \"6a1f4a4d-1576\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":5494,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"4133a9c9bd5d03b91cb638665ae7db68","sha1":"2663696315b29d002cae0b0e42f895f640555b3a","sha256":"9102d6b0e9fee71293d6b749380dbf1cc950e8cdbaaee0c1a98a19cd81b1f479","sha512":"570efc7d3d59c98d8aa1ee4e93e89b7e960e4bac7f0acef653ccdbcdcba0aab2430d7ab3e123f6edfcdc3820c247f6c7f83d494e501d8733c4f0aeede150c0d7","ssdeep":"96:9uXFocWWEx/YV2css4oFSy44ypmmaIyed7SWq:JBmVmDoFSyFyp33yJ","tlshash":"64b19913bed52088316ba594e6633bfe7fbd800193098df55b803668cf46afa05d1b4d","first_seen":"2026-02-20T11:58:25.681353Z","last_seen":"2026-06-03T14:49:59.608652Z","times_seen":12,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"portal.rodiviasdigital.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/ubuntu/v21/4iCs6KVjbNBYlgoKfw72.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:13 GMT","end":"Thu, 30 Jul 2026 15:53:12 GMT"},"fingerprint":{"sha1":"6C:B9:FE:19:9C:7C:AA:5D:D2:39:3A:16:2C:50:FB:C8:59:C8:CC:A8","sha256":"FC:4C:0C:6E:AB:D1:82:30:1F:A9:46:DF:FA:38:02:9F:06:56:FF:98:E0:8D:AB:9A:26:C3:2A:97:C5:CF:A6:1C"}}},"request":{"raw":"GET /s/ubuntu/v21/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://portal.rodiviasdigital.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 34924\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 31 May 2026 10:07:43 GMT\r\nexpires: Mon, 31 May 2027 10:07:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 267019\r\nlast-modified: Wed, 27 Aug 2025 19:19:11 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":34924,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 34924, version 1.0","md5":"4a8b9af22b314f408f66a17f71e28908","sha1":"6b5600d84c178cd28b23b583bbcaa4eb12efff25","sha256":"dabae363ac0ae6c3b2a137a32f7132b42520a8af252f87aa6c2198f2a79cf91c","sha512":"17dbf975ba4d4a818f25bb52dfdec52ff0ad6291c37981bce0313075c13751180a30ec81db40e1b2092a92e9491d275fa253e879e3e62d97ba235295da4ddd74","ssdeep":"768:C4rzLlWA+tpuAdMEUDz1whQjKgz63b6G8tWbxfw6abvdNwGFbML:xz+/uAdMEUDZKYI3bqtMY6WvkGFML","tlshash":"e3f2f1d39beb766c5e3fa89c32b3d2653969580430737119b0a2674842e274c56e6d03","first_seen":"2025-09-02T19:57:23.465236Z","last_seen":"2026-06-04T02:26:23.82982Z","times_seen":18000,"resource_available":false,"data":null}},"time_used":435,"timings":{"blocked":204,"dns":1,"connect":15,"send":0,"wait":22,"receive":5,"ssl":185},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.ipify.org/?format=json","fqdn":"api.ipify.org","domain":"ipify.org","tld":"org"},"ip":{"addr":"104.26.12.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://portal.rodiviasdigital.com/","date":"2026-06-03T12:18:02.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipify.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Apr 2026 21:16:17 GMT","end":"Tue, 28 Jul 2026 22:16:15 GMT"},"fingerprint":{"sha1":"6D:CC:48:D6:E1:8C:50:0D:7C:B9:13:15:F0:18:E0:73:56:59:60:F7","sha256":"00:FD:76:18:CB:8D:B6:5A:4C:B7:0A:37:77:28:B1:01:5C:3D:6A:E4:2D:06:02:C1:9D:B8:6B:F8:6F:F8:31:77"}}},"request":{"raw":"GET /?format=json HTTP/1.1\r\nHost: api.ipify.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://portal.rodiviasdigital.com/\r\nOrigin: https://portal.rodiviasdigital.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 03 Jun 2026 12:18:02 GMT\r\ncontent-type: application/json\r\ncontent-length: 21\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncf-ray: a05ea35b893c56c7-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7d69c71af0f191e9a72db6153f8018d1","sha1":"f67c5f2887bc05654b47f76e9621e53a4091aed1","sha256":"5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65","sha512":"fdf43a8f3d843fe9008949d6709c8e2a5cd640f6101522319745f0a829f21dc8f4bd4d70ff3e2f6e1fd53ca0d2dd872bf3588c593a403071102ab28763cbdba5","ssdeep":"","tlshash":"b8700022000000208c80800eca0a032223a0000ac20a00088e800b2288a0b380282032","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-06-04T02:28:46.696861Z","times_seen":92772,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":33,"dns":4,"connect":1,"send":0,"wait":109,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}