{"report_id":"352f09f1-aad3-44a7-88ab-23b448570885","version":6,"status":"done","tags":[],"date":"2026-03-18T10:52:16Z","url":{"schema":"http","addr":"lunverox.sbs","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":0,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"lunverox.sbs/","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"title":"RU • MaxUnique 09 • 2026","dom":{"size":6206,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"900ba309eabe4fce7bb36931596dc4fe","sha1":"2e3a707f1938233a5fc9fbef00576bfef79a8d06","sha256":"3bc3004add070d5d8b7549287cb37b648124de4616c99a307b2da6de05b70a99","sha512":"86279f95ae62e896e7912b35817499ad95e08d2528612489ae488f01df124c6c39b88c5b5c0ec3f6e6ee449b6c7479080cb855a27231678d927c555f9f1868e3","ssdeep":"192:ki2gcT+BzguExYXl0ttu9giuhy7hyrGimeH:t2PUBvGEgiuhy7hyiimW","tlshash":"2dd1c831a3421239717390c9ad52d78d35b48023a91f8358fb2d6192dfc6edfda65607","dom_hash":"domhashd93eab7056861202359a7c0bd02f2150","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"lunverox.sbs","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":0,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-22T10:52:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"lunverox.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"lunverox.sbs","ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"domain_registered":"2026-03-10","domain_rank":0,"first_seen":"2026-03-18T10:52:16.679106Z","last_seen":"2026-03-18T10:52:16.679106Z","alert_count":2,"request_count":2,"received_data":6744,"sent_data":912,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"lunverox.sbs/","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"c4911ed679bb00aeac51b25697d9eee4","sha1":"6a17b8e027b651ed82c336fbbf22b653d03c54c8","sha256":"a4984e19e42c4e6d75a9c1656f8715e0a4bbd93bae458342b439245cdce31d2e","sha512":"de20575c1c2f292bcec2e35eff5dc817aa10c9b36a00cc71297bcc229ff82f9614fd1f7bf240a40893292e754a55c116851a56fd412d31a7ca8b1d3614947a0e","ssdeep":"","tlshash":"23b012951001cec1165010a03a418f31147812558b41669014069481207054e4e85dc4","size":92,"data":"","first_seen":"2026-02-25T01:49:52.587601Z","last_seen":"2026-03-18T11:27:42.617032Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lunverox.sbs/","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"01c3c28e001e9ad492c1e836e106584b","sha1":"eb5365f9afe1ebc61bfd6413d0fe855d43596847","sha256":"e8279ba19627d2609fc6754f55a2f43c9ba90b56b3ff144cfdc8687177a39596","sha512":"dfebaea2e64c961fd6d09aeea137d941a13badbfaba351b73d43831836967ab9691ae2ad34405d2785c5791a89fa115892df844b11bacd7750564dbd07f20185","ssdeep":"","tlshash":"56f02b73f39a0678839f52ff2c9567a534b440063205c35a992c102168d8f9fb4bbacb","size":544,"data":"","first_seen":"2026-03-18T10:51:33.907371Z","last_seen":"2026-03-18T11:27:42.617836Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lunverox.sbs/","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"a01f0a452f05f953e5c153b2e08f6ee2","sha1":"e59cf925c80b9644dd3c7d0e9dcda95fc669f7eb","sha256":"503a8645020705e0cb342b3fb605a3ca82712ae442007550936b23d7dbaeef26","sha512":"c2ee1873f120889635510df4a1cca118aabe26bd0b81487318827e7beccae12ff3831b97d8b380039dfea6fb29c4af265d780eb19d56f4e0c5557e7617510249","ssdeep":"","tlshash":"ea11ab1e01234bf610f36098db87b3a079f201933149c6083d1e8144af8ce5db7b1aaa","size":905,"data":"","first_seen":"2026-03-18T10:51:33.909032Z","last_seen":"2026-03-18T11:27:42.618584Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"75eb277261cf011c79a95198d637ccc0","sha1":"b760897a5156bf879b18bc9fd4d4969a9f6a82b1","sha256":"bc8e326d031ce4285696f951823d681f46ed8db053e41ed83c11ff0c800cf563","sha512":"3b84c4b73212c27e0e6a597eb9f7d2464569b62a5e8ff130526083c39a2edb150236b040cb1d08e06aa738f864827b7971ed8d1f0ca512761f823055f7a74c86","ssdeep":"","tlshash":"65700000c0a0200202080c8a0880202a0388000000fc0000380080080080202ae88322","size":21,"data":"","first_seen":"2026-03-18T10:52:19.303932Z","last_seen":"2026-03-18T11:23:57.565855Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"lunverox.sbs/","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-18T10:51:55.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lunverox.sbs","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 08:27:48 GMT","end":"Mon, 08 Jun 2026 08:27:47 GMT"},"fingerprint":{"sha1":"24:1A:E6:EE:04:56:DB:FA:9F:18:B1:F6:BB:DC:EF:BF:6F:0F:8F:E8","sha256":"18:D2:D0:59:C9:6F:04:69:08:B2:DC:D9:1C:8F:75:56:E2:2B:28:09:4F:79:BA:40:D2:BE:6A:0E:8F:E4:B3:6B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: lunverox.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:51:55 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 10 Mar 2026 09:24:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69afe33b-1823\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6179,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"f449b939929f3dff6c16f088ed987b27","sha1":"d7d533057bc79e9cfa12a1ba5256275b844d4ced","sha256":"9be327c9f6bcadf361f6ffb727192d1b5ffc84ac54f5086012a344598a408d30","sha512":"0b56fec8ac49e9aaf2d73ccaeece32dbdd065f72aa21bd125013251e50b82d6e622addd7f85459e2237d0889fe09ab4db278418e039b886313d6c15108bbd7f0","ssdeep":"192:ii2gcT+BzguExYXl0t6Dgiuhy7hyrGimeL:L2PUBvVgiuhy7hyiimu","tlshash":"2cd1b631a382223971739089ad52d78d35b48023a90f8358bb6d61a2dfc6edfda65607","first_seen":"2026-03-18T10:52:19.292245Z","last_seen":"2026-03-18T11:23:57.561502Z","times_seen":2,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":110,"dns":52,"connect":25,"send":0,"wait":25,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"lunverox.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lunverox.sbs/favicon.ico","fqdn":"lunverox.sbs","domain":"lunverox.sbs","tld":"sbs"},"ip":{"addr":"91.84.122.139","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://lunverox.sbs/","date":"2026-03-18T10:51:55.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lunverox.sbs","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Mar 2026 08:27:48 GMT","end":"Mon, 08 Jun 2026 08:27:47 GMT"},"fingerprint":{"sha1":"24:1A:E6:EE:04:56:DB:FA:9F:18:B1:F6:BB:DC:EF:BF:6F:0F:8F:E8","sha256":"18:D2:D0:59:C9:6F:04:69:08:B2:DC:D9:1C:8F:75:56:E2:2B:28:09:4F:79:BA:40:D2:BE:6A:0E:8F:E4:B3:6B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: lunverox.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://lunverox.sbs/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 18 Mar 2026 10:51:55 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-05-15T16:13:34.845128Z","times_seen":510150,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-18","alert":"Sinkholed","trigger":"lunverox.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}