{"report_id":"04f5e3c5-1030-456b-bf18-c8d664f15885","version":6,"status":"done","tags":[],"date":"2026-06-01T02:34:38Z","url":{"schema":"https","addr":"tr.yenimadrid.bet/","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"ip":{"addr":"130.12.180.239","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"tr.yenimadrid.bet/","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"title":"Madridbet 2026 - Madridbet Giriş - Madridbet Yeni Giriş","dom":{"size":33381,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (354)","md5":"59fa5866b00b76603d5989a105b2eb96","sha1":"ab6f610cb8713cad4d9de29ab577cdc7d013c719","sha256":"2bf4b05390becb009dcc6a34d78852c586ef21bbb415bfe7d77845b1d8d4426a","sha512":"691025a328ff6ad0f9a71a3956bf1cf4df95361d39953656157503942cd7bb05168509e60777b02045af6d5628cc94ee38d780115bfa7af0c3ec76508501b772","ssdeep":"768:x5CYpCibZGjBYECHBnOdWb0fqxX1p88AAw2s91Ioom7U8AW/UTCLi2I7GJ/sF:x8Y02ZGjBYEUs2U8AAw2s91Ixv8AW/UD","tlshash":"7de228973842601f677752daf2f35b2ea1cfd713c223642d65e4c51ad3c89a682a370d","dom_hash":"domhashd6f55ef21d2f08383029264cfb9d0980","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"tr.yenimadrid.bet/","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"ip":{"addr":"130.12.180.239","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-06T02:34:38Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"tr.yenimadrid.bet","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"tr.yenimadrid.bet","ip":{"addr":"130.12.180.239","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-01T02:28:44.121271Z","last_seen":"2026-06-01T02:28:44.121271Z","alert_count":3,"request_count":3,"received_data":36838,"sent_data":1383,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"tr.yenimadrid.bet/","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"ip":{"addr":"130.12.180.239","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-01T02:34:16.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yenimadrid.bet","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 23:44:34 GMT","end":"Fri, 28 Aug 2026 23:44:33 GMT"},"fingerprint":{"sha1":"C0:F2:50:75:CE:93:16:DF:0E:DF:06:20:AC:39:52:D6:A2:1A:5A:80","sha256":"8A:32:5A:5A:BF:9A:29:0E:A5:6C:48:6D:AE:76:2F:55:FE:9C:26:B8:5A:98:1F:A6:F3:44:8F:F5:4D:AA:6A:A2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tr.yenimadrid.bet\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 01 Jun 2026 02:34:18 GMT\r\nContent-Type: text/html\r\nContent-Length: 9180\r\nConnection: keep-alive\r\nX-XSS-Protection: 1; mode=block\r\nCache-Control: max-age=120\r\nLast-Modified: Sun, 31 May 2026 00:43:25 GMT\r\nAccept-Ranges: bytes\r\nContent-Encoding: br\r\nVary: Accept-Encoding\r\nServer: ASTG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33453,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (354)","md5":"2ed29989f7dc5e36e39af374c8aaf95b","sha1":"e7a727af25b24c84b623136f3d32852d0d980b92","sha256":"24c1b37e8638ec2ef7c37eefe345cd3bccbf370870c8980f704bc6733ddc834f","sha512":"a6cbd8ea44d66fd9fe726e4abadda0a7a711d70d92a5b3a653f3dfe6848cfb02553ad69188e801a1f26bc6bd54262d6df760720fb0a646a3a5ecfd445351a338","ssdeep":"768:QydYpCibZGjBYECHBnOdWb0fqxs1p88AAw2s91Ioom7U8AW/UTCLi2I7GJ/sz:Q0Y02ZGjBYEUsvU8AAw2s91Ixv8AW/U5","tlshash":"72e228973842601f677712daf1f35b2ea2dfd713c223742965e4c51ad3c89a682a370d","first_seen":"2026-06-01T02:28:47.957503Z","last_seen":"2026-06-01T02:34:39.568129Z","times_seen":2,"resource_available":true,"data":null}},"time_used":333,"timings":{"blocked":135,"dns":27,"connect":47,"send":0,"wait":59,"receive":1,"ssl":60},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"tr.yenimadrid.bet","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tr.yenimadrid.bet/favicon-16x16.png","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"ip":{"addr":"130.12.180.239","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tr.yenimadrid.bet/","date":"2026-06-01T02:34:17.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yenimadrid.bet","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 23:44:34 GMT","end":"Fri, 28 Aug 2026 23:44:33 GMT"},"fingerprint":{"sha1":"C0:F2:50:75:CE:93:16:DF:0E:DF:06:20:AC:39:52:D6:A2:1A:5A:80","sha256":"8A:32:5A:5A:BF:9A:29:0E:A5:6C:48:6D:AE:76:2F:55:FE:9C:26:B8:5A:98:1F:A6:F3:44:8F:F5:4D:AA:6A:A2"}}},"request":{"raw":"GET /favicon-16x16.png HTTP/1.1\r\nHost: tr.yenimadrid.bet\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tr.yenimadrid.bet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Mon, 01 Jun 2026 02:34:18 GMT\r\nContent-Type: text/html\r\nContent-Length: 1251\r\nConnection: keep-alive\r\nX-XSS-Protection: 1; mode=block\r\nCache-Control: max-age=120, private, no-cache, no-store, must-revalidate, max-age=0\r\nPragma: no-cache\r\nServer: ASTG\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-06-07T08:01:38.485983Z","times_seen":132441,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":2,"connect":43,"send":0,"wait":63,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"tr.yenimadrid.bet","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tr.yenimadrid.bet/apple-touch-icon.png","fqdn":"tr.yenimadrid.bet","domain":"yenimadrid.bet","tld":"bet"},"ip":{"addr":"130.12.180.239","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tr.yenimadrid.bet/","date":"2026-06-01T02:34:17.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.yenimadrid.bet","organization":""},"issuer":{"commonName":"YE2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 23:44:34 GMT","end":"Fri, 28 Aug 2026 23:44:33 GMT"},"fingerprint":{"sha1":"C0:F2:50:75:CE:93:16:DF:0E:DF:06:20:AC:39:52:D6:A2:1A:5A:80","sha256":"8A:32:5A:5A:BF:9A:29:0E:A5:6C:48:6D:AE:76:2F:55:FE:9C:26:B8:5A:98:1F:A6:F3:44:8F:F5:4D:AA:6A:A2"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: tr.yenimadrid.bet\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tr.yenimadrid.bet/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Mon, 01 Jun 2026 02:34:18 GMT\r\nContent-Type: text/html\r\nContent-Length: 1251\r\nConnection: keep-alive\r\nX-XSS-Protection: 1; mode=block\r\nCache-Control: max-age=120, private, no-cache, no-store, must-revalidate, max-age=0\r\nPragma: no-cache\r\nServer: ASTG\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-06-07T08:01:38.485983Z","times_seen":132441,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-01","alert":"Sinkholed","trigger":"tr.yenimadrid.bet","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}