{"report_id":"3e925964-8ee3-47f4-88bb-2c255c640cbb","version":6,"status":"done","tags":[],"date":"2025-12-20T08:29:47Z","url":{"schema":"http","addr":"sportcafe.info","fqdn":"sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"72.52.178.23","port":0,"asn":32244,"as":"LIQUIDWEB","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"ww1.sportcafe.info/?usid=24\u0026utid=13451063438","fqdn":"ww1.sportcafe.info","domain":"sportcafe.info","tld":"info"},"title":"sportcafe.info","dom":{"size":1177,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"0bfd509b8b77fc15fcda59bb512767df","sha1":"9a82244813016c22345bc9c186f4d9cecdca407b","sha256":"d2fe4bd887502e2ad5515d2445e7a75f62ca030e98025a8e1ee83299b40273f7","sha512":"01e651856b88a09201c04a5a58efcdaddcd1993567f364bcfd1e1e337179f31401cf8a1183670f726c656c84b5c463533adc54f31f3ce76540377754f3839acb","ssdeep":"","tlshash":"73210e026d9344a43154c6341aa5ff2c1f49b90bb003cca47aeda2980fc9349ced71dc","dom_hash":"domhashe96f4de70d144f7da75b9e764a7ea638","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"sportcafe.info","fqdn":"sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"72.52.178.23","port":0,"asn":32244,"as":"LIQUIDWEB","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-24T08:29:47Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"sportcafe.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"sportcafe.info","ip":{"addr":"72.52.178.23","port":443,"asn":32244,"as":"LIQUIDWEB","country":"United States","country_code":"US"},"domain_registered":"2025-08-13","domain_rank":0,"first_seen":"2025-12-20T08:29:47.299165Z","last_seen":"2025-12-20T08:29:47.299165Z","alert_count":1,"request_count":1,"received_data":1285,"sent_data":483,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ww1.sportcafe.info","ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2025-08-13","domain_rank":0,"first_seen":"2025-10-18T09:07:15.492232Z","last_seen":"2025-11-16T10:10:18.425632Z","alert_count":4,"request_count":2,"received_data":1540,"sent_data":814,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sedoparking.com","ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2001-09-18","domain_rank":11712,"first_seen":"2012-06-01T05:52:33Z","last_seen":"2025-12-15T19:46:44.749026Z","alert_count":1,"request_count":1,"received_data":1535,"sent_data":364,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"ww1.sportcafe.info/?usid=24\u0026utid=13451063438","fqdn":"ww1.sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"a63288746027972db767b152b19a629e","sha1":"5f9b587ac77a5322293ebc41add8b489b08f8414","sha256":"cad0dd6cf4e7f8b689595c077109155f7b96e686c7e45c7cd8dc691c94d924da","sha512":"94822febf64a7ab6b1c7d6666876a1af3481956213f4c07fc7916c075a8ab55c3d5ea5b33f12517079441dc18bcd3373fe7fc528be180b7fde47447b7be15e39","ssdeep":"","tlshash":"2dc09b101f4751b1159515562415de7d1954771b7453d48d75ed06011bcc35d07554f0","size":136,"data":"","first_seen":"2025-11-16T10:10:23.983931Z","last_seen":"2025-12-20T08:29:50.171415Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"sedoparking.com/frmpark/sportcafe.info/sedopark/park.js","fqdn":"sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"500d94783d04f5771dbb9db5a7972478","sha1":"785cca4c9e146a7e359a880be3a321c50e0d5ae2","sha256":"6ed583646ca06ff6ae82d9f131c0914e55ed216ba1edfecd7eeb2ac865d2d5b3","sha512":"ea8a1d48fc223fd943f3ecd39305b18bfc416dc985f1be4b12e1b53dd7cf0a721c384fe6fdc4e6af19ea292f59a546366bb740e295ed39a18e11116dca9d1bd9","ssdeep":"","tlshash":"8c21e07e7d52ac33c6cac5aa1c7b7a58ac6251033326dcd0a65cccac19c5f4414b7396","size":1285,"data":"","first_seen":"2025-11-16T10:10:23.980131Z","last_seen":"2025-12-20T08:29:50.170387Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"af593dd0ba15f5c6c1c4ef45dd46a3f9","sha1":"0d91391bc254c01faf229da290d4c45cf6339235","sha256":"127d0283230e065e3659cd81535826ca2c1bb7a567744f5b2e4dbc8de4646dca","sha512":"a28e75b2e53a479fdd2911b1f475a393d93474155aaa8128e60f7ebde16cae97ec905159e95a8ed33a8059754f52eedb67a20ffe1dc9277790a0e3b88d39888d","ssdeep":"","tlshash":"20a011020f0380a228802a8800288e380200bb0ba0a2e8e800e08200232c2ae08aa8e0","size":81,"data":"","first_seen":"2025-11-16T10:10:23.984779Z","last_seen":"2025-12-20T08:29:50.172258Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"sportcafe.info/","fqdn":"sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"72.52.178.23","port":443,"asn":32244,"as":"LIQUIDWEB","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-20T08:29:25.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sportcafe.info","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 16 Oct 2025 08:56:19 GMT","end":"Wed, 14 Jan 2026 08:56:18 GMT"},"fingerprint":{"sha1":"B1:37:F6:E8:22:2D:F9:67:1C:94:61:D2:60:25:22:7E:03:6E:8C:61","sha256":"7D:8C:57:59:89:82:90:38:9C:FC:8B:D9:A7:28:65:14:2C:DC:B3:1A:14:08:46:36:AA:A6:9B:8C:33:5C:BA:92"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: sportcafe.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Sat, 20 Dec 2025 08:29:25 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlocation: http://ww1.sportcafe.info/?usid=24\u0026utid=13451063438\r\ncache-control: no-cache\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":1026,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":1231,"timings":{"blocked":550,"dns":271,"connect":122,"send":0,"wait":130,"receive":0,"ssl":153},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"sportcafe.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ww1.sportcafe.info/?usid=24\u0026utid=13451063438","fqdn":"ww1.sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-20T08:29:25.784Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?usid=24\u0026utid=13451063438 HTTP/1.1\r\nHost: ww1.sportcafe.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sat, 20 Dec 2025 08:29:26 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ntransfer-encoding: chunked\r\nvary: Accept-Encoding\r\nexpires: Mon, 26 Jul 1997 05:00:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nlast-modified: Sat, 20 Dec 2025 08:29:26 GMT\r\nx-cache-miss-from: parking-55667fc4c7-j7pq7\r\nserver: Parking/1.0\r\ncontent-encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1026,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"1c32de6a4cf263a75162a7402f555cff","sha1":"a6a0f7c9ddcb9af0d7ebd1e6bd1c94c18dff6a63","sha256":"a2ff8f6654452f2263ec27ee38692b087cd44380640f43f60a8d9d12a4137e91","sha512":"b39da3132b937c1a47b709014cc516fcff67e56e4606fabae9c9f796bdc0cff908b89b4c4a628f5f92a8ff2c2f0932b814e8bc56405db42662cc5aa701d967f3","ssdeep":"","tlshash":"2a11eb0218e344683119c2242ae9fb1c2f4a6a1bb107c8243eeea2ac4fc6705ced71dc","first_seen":"2025-11-16T10:10:23.981124Z","last_seen":"2025-12-20T08:29:50.169495Z","times_seen":2,"resource_available":false,"data":null}},"time_used":705,"timings":{"blocked":325,"dns":302,"connect":32,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"sedoparking.com/frmpark/sportcafe.info/sedopark/park.js","fqdn":"sedoparking.com","domain":"sedoparking.com","tld":"com"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://ww1.sportcafe.info/?usid=24\u0026utid=13451063438","date":"2025-12-20T08:29:26.335Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /frmpark/sportcafe.info/sedopark/park.js HTTP/1.1\r\nHost: sedoparking.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.sportcafe.info/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Sat, 20 Dec 2025 08:29:26 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ntransfer-encoding: chunked\r\nvary: Accept-Encoding\r\nx-cache-miss-from: parking-55667fc4c7-sdwdg\r\nserver: Parking/1.0\r\ncontent-encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1285,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (987)","md5":"500d94783d04f5771dbb9db5a7972478","sha1":"785cca4c9e146a7e359a880be3a321c50e0d5ae2","sha256":"6ed583646ca06ff6ae82d9f131c0914e55ed216ba1edfecd7eeb2ac865d2d5b3","sha512":"ea8a1d48fc223fd943f3ecd39305b18bfc416dc985f1be4b12e1b53dd7cf0a721c384fe6fdc4e6af19ea292f59a546366bb740e295ed39a18e11116dca9d1bd9","ssdeep":"","tlshash":"8c21e07e7d52ac33c6cac5aa1c7b7a58ac6251033326dcd0a65cccac19c5f4414b7396","first_seen":"2025-11-16T10:10:23.980131Z","last_seen":"2025-12-20T08:29:50.170387Z","times_seen":2,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":37,"dns":1,"connect":37,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"sedoparking.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"ww1.sportcafe.info/favicon.ico","fqdn":"ww1.sportcafe.info","domain":"sportcafe.info","tld":"info"},"ip":{"addr":"64.190.63.136","port":80,"asn":47846,"as":"SEDO GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://ww1.sportcafe.info/?usid=24\u0026utid=13451063438","date":"2025-12-20T08:29:26.448Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ww1.sportcafe.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://ww1.sportcafe.info/?usid=24\u0026utid=13451063438\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 441 \r\ndate: Sat, 20 Dec 2025 08:29:26 GMT\r\ncontent-length: 0\r\nserver: Parking/1.0\r\n\r\n","headers":null,"cookies":null,"status_code":"441","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/x-icon","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"ww1.sportcafe.info","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}