{"report_id":"06be9e9a-100b-422e-aab1-749d6945e20d","version":6,"status":"done","tags":[],"date":"2025-08-04T08:05:12Z","url":{"schema":"http","addr":"piremagu.shop","fqdn":"piremagu.shop","domain":"piremagu.shop","tld":"shop"},"ip":{"addr":"104.18.20.129","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"piremagu.shop/","fqdn":"piremagu.shop","domain":"piremagu.shop","tld":"shop"},"title":"500 Internal Server Error"},"submit":{"url":{"schema":"http","addr":"piremagu.shop","fqdn":"piremagu.shop","domain":"piremagu.shop","tld":"shop"},"ip":{"addr":"104.18.20.129","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-08T08:05:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-04","alert":"Sinkholed","trigger":"piremagu.shop","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"piremagu.shop","ip":{"addr":"104.18.20.129","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-08-04T08:05:12.813828Z","last_seen":"2025-08-04T08:05:12.813828Z","alert_count":2,"request_count":2,"received_data":1567,"sent_data":1232,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"piremagu.shop/","fqdn":"piremagu.shop","domain":"piremagu.shop","tld":"shop"},"ip":{"addr":"104.18.20.129","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-04T08:04:51.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"piremagu.shop","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 01 Aug 2025 05:48:49 GMT","end":"Thu, 30 Oct 2025 06:48:45 GMT"},"fingerprint":{"sha1":"FC:E6:B2:8F:03:E6:01:82:50:E3:6D:BF:BB:EC:3C:FE:F4:20:18:00","sha256":"EC:91:E9:D8:D4:6D:4D:5E:E4:7F:39:CA:9E:F3:8E:0B:A5:FC:C1:4A:97:75:02:C4:8F:D5:D1:A1:0F:B1:FA:81"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: piremagu.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Aug 2025 08:04:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nx-trace-id: 4F39457C-A9D9-E12D-4D22-B337C8636B88\r\nexecution-time: 0.0275051594\r\ntrace_id: 4F39457C-A9D9-E12D-4D22-B337C8636B88\r\nset-cookie: shop_global_visit_id=ED2B94A7-AC13-1BA1-AF9C-F11FC7D80699; expires=Thu, 02-Aug-2035 08:04:52 GMT; Max-Age=315360000; path=/\nshop_checkout_visit_id=8D9FEE0C-C99A-6526-9A38-17B3F4DEB273; expires=Thu, 02-Aug-2035 08:04:52 GMT; Max-Age=315360000; path=/\nshop_global_visit_session=DE79CC57-BD37-75D8-DF55-84DB4345A0FF; expires=Tue, 05-Aug-2025 08:04:52 GMT; Max-Age=86400; path=/\ncurrency_code=NOK; path=/\nPHPSESSID=a1af119bc518bc93c49e03f14abea244; path=/\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 969c8be21efe0b06-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":295,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"5bd8d5a8c55d2fb64ef320781d3085f4","sha1":"394c566f3927ccd913420aa153e3cd32f87f787d","sha256":"b6a2b8551ad1b947f1760e55fbc6771f59de79cf0d296703fe98ec040ac9ea48","sha512":"1b7da7747796a12ca0befff7c4a880499b2f19d792537f9a8b5f40b2a71ee9e34710b8ea8196f8d123eb11c30be6205a1ed15e30ad126b4baadb7ebdfc470d1f","ssdeep":"","tlshash":"d8e02b275d03b664a46b2404928377c8db99851328dac480d1c6c797f1c77c7ca4b3e9","first_seen":"2025-08-04T08:05:15.899159Z","last_seen":"2025-08-04T08:05:15.899159Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1681,"timings":{"blocked":707,"dns":673,"connect":1,"send":0,"wait":267,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-04","alert":"Sinkholed","trigger":"piremagu.shop","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"piremagu.shop/favicon.ico","fqdn":"piremagu.shop","domain":"piremagu.shop","tld":"shop"},"ip":{"addr":"104.18.20.129","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://piremagu.shop/","date":"2025-08-04T08:04:52.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"piremagu.shop","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 01 Aug 2025 05:48:49 GMT","end":"Thu, 30 Oct 2025 06:48:45 GMT"},"fingerprint":{"sha1":"FC:E6:B2:8F:03:E6:01:82:50:E3:6D:BF:BB:EC:3C:FE:F4:20:18:00","sha256":"EC:91:E9:D8:D4:6D:4D:5E:E4:7F:39:CA:9E:F3:8E:0B:A5:FC:C1:4A:97:75:02:C4:8F:D5:D1:A1:0F:B1:FA:81"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: piremagu.shop\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://piremagu.shop/\r\nCookie: shop_global_visit_id=ED2B94A7-AC13-1BA1-AF9C-F11FC7D80699; shop_checkout_visit_id=8D9FEE0C-C99A-6526-9A38-17B3F4DEB273; shop_global_visit_session=DE79CC57-BD37-75D8-DF55-84DB4345A0FF; currency_code=NOK; PHPSESSID=a1af119bc518bc93c49e03f14abea244\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 04 Aug 2025 08:04:53 GMT\r\ncontent-type: image/x-icon\r\ncontent-encoding: gzip\r\nlast-modified: Tue, 18 Jun 2024 08:33:11 GMT\r\netag: W/\"66714647-46\"\r\ncf-cache-status: EXPIRED\r\nexpires: Mon, 04 Aug 2025 12:04:53 GMT\r\ncache-control: public, max-age=14400\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 969c8be54c3d0b06-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":70,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 1x1, 32 bits/pixel","md5":"735ddbd8a50494b34bbed5fe68727c42","sha1":"ab6c96f55f6f9383c8c73f2838d07398529a4b8f","sha256":"23d7bcc5e68b94d6e03382ac1d9a14ab2d0134772682ae0dd1b2e8b4c85afc51","sha512":"b3a7773c84719a1864c911422a7e6f37efecc6952dbe85bfcdb095fd0434487fbb44d0d810890d96a50f4bf3ef8a3c32a47de5115f8e0cefab7431f10eee9928","ssdeep":"","tlshash":"51a00082b300008ec0000f3000f30b0b2a2cc0028a3a230302200308aca32c8080a3c2","first_seen":"2023-05-07T20:28:17Z","last_seen":"2026-04-13T04:36:46.719436Z","times_seen":4707,"resource_available":false,"data":null}},"time_used":405,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":405,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-04","alert":"Sinkholed","trigger":"piremagu.shop","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}