{"report_id":"0b9a282f-57e6-49fe-925e-decbd6bf4b74","version":6,"status":"done","tags":[],"date":"2026-02-06T17:33:40Z","url":{"schema":"http","addr":"www.jm-template02.redfernmediadevelopment.com/","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"ip":{"addr":"192.254.226.134","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"www.jm-template02.redfernmediadevelopment.com/","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"title":"503 Error","dom":{"size":727,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"02621b8acaf524fbcfa773429fedad7f","sha1":"a01650179664f5a56e522f8744a8d67be6f93943","sha256":"6d7a707cf85208960957e321e2295e13ebad3c5e03da2a1d4543f6dea3d85d8e","sha512":"d0cd0a9f58a3ddb90474f6194af7671dcaf60aa4436d28274a5742033b1d3c781deb83312494ef2003fbec7d1a098a8153c9d4a406249a34937f92e56ac10d5e","ssdeep":"","tlshash":"68019403c040381af033872aa4c3f2186304e848124b6db07dcd69aa8ec8f21e7c7bcc","dom_hash":"domhashe8150bacfcdcec57b3b6e0316f556de4","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.jm-template02.redfernmediadevelopment.com/","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"ip":{"addr":"192.254.226.134","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-13T17:33:40Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"www.jm-template02.redfernmediadevelopment.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.jm-template02.redfernmediadevelopment.com","ip":{"addr":"192.254.226.134","port":80,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"2019-12-05","domain_rank":0,"first_seen":"2026-02-06T17:33:40.728413Z","last_seen":"2026-02-06T17:33:40.728413Z","alert_count":3,"request_count":3,"received_data":3056,"sent_data":1359,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"www.jm-template02.redfernmediadevelopment.com/favicon.ico","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"ip":{"addr":"192.254.226.134","port":80,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://www.jm-template02.redfernmediadevelopment.com/","date":"2026-02-06T17:33:17.064Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.jm-template02.redfernmediadevelopment.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://www.jm-template02.redfernmediadevelopment.com/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Unavailable\r\nDate: Fri, 06 Feb 2026 17:33:17 GMT\r\nServer: nginx/1.25.5\r\nContent-Type: text/html\r\nContent-Length: 465\r\nLast-Modified: Tue, 04 Jun 2024 08:46:17 GMT\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Unavailable","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":744,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"6c0c8c7419309ef3c3023f2f7f5489bf","sha1":"e41ce0dbe01fc1395d252c476a318e4f4d36048d","sha256":"8282022ff4ef77aef97428899e3975bd49ef85265e5f26cac244777b5c090764","sha512":"b0fa8d7c2e35707630769849dd065f0894467eef46ca59f9bf8fb22c554b0ed9d423b949a96cdd253a2fcb23a3273a50e3240276e7a1ca98e6e6ca1cb5f5a236","ssdeep":"","tlshash":"92016547c0403815e1338629a5c3f2186315e944128b6d703ece696a8ec8f21a6db7cc","first_seen":"2023-05-12T21:15:51Z","last_seen":"2026-04-03T08:55:59.150287Z","times_seen":995,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":1,"connect":138,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"www.jm-template02.redfernmediadevelopment.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jm-template02.redfernmediadevelopment.com/","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"ip":{"addr":"192.254.226.134","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-06T17:33:15.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.coastalbay.redfernmediadevelopment.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Feb 2026 15:27:17 GMT","end":"Thu, 07 May 2026 15:27:16 GMT"},"fingerprint":{"sha1":"D3:57:3D:F4:4D:F4:E8:3F:DD:E3:11:C7:1A:D6:EE:A9:46:A9:03:37","sha256":"41:60:29:B8:8D:EB:BC:93:2E:73:20:40:46:E4:0C:71:04:F0:1E:1B:1F:41:6E:DB:6A:57:23:B7:83:5E:BA:D2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.jm-template02.redfernmediadevelopment.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 503 Service Unavailable\r\ndate: Fri, 06 Feb 2026 17:33:16 GMT\r\nserver: nginx/1.25.5\r\ncontent-type: text/html\r\ncontent-length: 465\r\nlast-modified: Tue, 04 Jun 2024 08:46:17 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Unavailable","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":744,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"6c0c8c7419309ef3c3023f2f7f5489bf","sha1":"e41ce0dbe01fc1395d252c476a318e4f4d36048d","sha256":"8282022ff4ef77aef97428899e3975bd49ef85265e5f26cac244777b5c090764","sha512":"b0fa8d7c2e35707630769849dd065f0894467eef46ca59f9bf8fb22c554b0ed9d423b949a96cdd253a2fcb23a3273a50e3240276e7a1ca98e6e6ca1cb5f5a236","ssdeep":"","tlshash":"92016547c0403815e1338629a5c3f2186315e944128b6d703ece696a8ec8f21a6db7cc","first_seen":"2023-05-12T21:15:51Z","last_seen":"2026-04-03T08:55:59.150287Z","times_seen":995,"resource_available":true,"data":null}},"time_used":1082,"timings":{"blocked":450,"dns":163,"connect":136,"send":0,"wait":182,"receive":0,"ssl":147},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"www.jm-template02.redfernmediadevelopment.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"www.jm-template02.redfernmediadevelopment.com/","fqdn":"www.jm-template02.redfernmediadevelopment.com","domain":"redfernmediadevelopment.com","tld":"com"},"ip":{"addr":"192.254.226.134","port":80,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-06T17:33:16.644Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: www.jm-template02.redfernmediadevelopment.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 503 Service Unavailable\r\nDate: Fri, 06 Feb 2026 17:33:16 GMT\r\nServer: nginx/1.25.5\r\nContent-Type: text/html\r\nContent-Length: 465\r\nLast-Modified: Tue, 04 Jun 2024 08:46:17 GMT\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"503","status_text":"Service Unavailable","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":744,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"6c0c8c7419309ef3c3023f2f7f5489bf","sha1":"e41ce0dbe01fc1395d252c476a318e4f4d36048d","sha256":"8282022ff4ef77aef97428899e3975bd49ef85265e5f26cac244777b5c090764","sha512":"b0fa8d7c2e35707630769849dd065f0894467eef46ca59f9bf8fb22c554b0ed9d423b949a96cdd253a2fcb23a3273a50e3240276e7a1ca98e6e6ca1cb5f5a236","ssdeep":"","tlshash":"92016547c0403815e1338629a5c3f2186315e944128b6d703ece696a8ec8f21a6db7cc","first_seen":"2023-05-12T21:15:51Z","last_seen":"2026-04-03T08:55:59.150287Z","times_seen":995,"resource_available":true,"data":null}},"time_used":437,"timings":{"blocked":134,"dns":0,"connect":136,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"www.jm-template02.redfernmediadevelopment.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}