{"report_id":"5367bb87-f907-426a-8641-e2078ebc480b","version":6,"status":"done","tags":[],"date":"2026-02-25T18:10:15Z","url":{"schema":"http","addr":"publicidade.projetaideais.com.br","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"ip":{"addr":"162.214.88.105","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"publicidade.projetaideais.com.br/","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"title":"Coming Soon","dom":{"size":1075,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"b31baaef92df247ca720643970623724","sha1":"612fe955663056eca66ac7d7af82fb7e3f0ad768","sha256":"919b319558128492987280967aacce9d931783e4dffa75f936b66042a7a2684a","sha512":"3043547f7c6fe43bc33dd33748a19fd945fcf4d0d3e710de013f5af46833c3d9eec0489fe9bd1bb0b4a4273b19c229205b2f80db53fdddf8dda1c2f3bc54b127","ssdeep":"","tlshash":"1411c00856e34107659bac122fa5b6042ae3d457444efe233acda780cf8926445ebb9c","dom_hash":"domhash029390b9a5aba26c7071d27b7c824792","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"publicidade.projetaideais.com.br","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"ip":{"addr":"162.214.88.105","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-01T18:10:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"publicidade.projetaideais.com.br","ip":{"addr":"162.214.88.105","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"2012-05-15","domain_rank":0,"first_seen":"2026-02-25T01:37:01.009575Z","last_seen":"2026-02-25T01:37:01.009575Z","alert_count":6,"request_count":2,"received_data":2669,"sent_data":972,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"publicidade.projetaideais.com.br/","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"ip":{"addr":"162.214.88.105","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"7a6c9598847d0c0b33058d1f9a49806e","sha1":"2bcf7ddbcdf2c11aed2d2fd7c98733548e73b1a3","sha256":"d990b46f9b76e68a184e8600e4ace7386aabb6d7b77ef5f97e7f565be78bd21b","sha512":"4673407347bc973fed75195d291c06163a901e7e5a46bc5cc0f49d546f5fc015df6d930871a8669fbd7ac65fc8a898e609255e207fce8dfcf34db0929fc85e8d","ssdeep":"","tlshash":"8de0264ca7a7d51363ef7c53af0eb60426b3406b50947e0336acae845fa932941abd44","size":363,"data":"","first_seen":"2026-02-25T01:37:02.418148Z","last_seen":"2026-02-25T18:10:16.685044Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"publicidade.projetaideais.com.br/","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"ip":{"addr":"162.214.88.105","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-25T18:09:53.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.publicidade.projetaideais.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Feb 2026 17:04:40 GMT","end":"Tue, 12 May 2026 17:04:39 GMT"},"fingerprint":{"sha1":"BE:29:47:D4:34:13:F3:BF:19:06:A6:C7:11:D9:7B:B9:77:6A:83:D1","sha256":"2A:F0:CF:E3:86:90:15:35:A6:29:49:F6:32:30:43:BF:2D:91:89:16:30:A7:9F:7C:BD:19:B4:F0:F0:D7:67:18"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: publicidade.projetaideais.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 25 Feb 2026 18:09:50 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 01 Jan 1970 00:00:00 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1092\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1092,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"1edf540400ff194971672660b1522f28","sha1":"50a62dc71863c36f9c5d0cffadec0525aee5bb6a","sha256":"ad7ca3e36c6561b8258f91761e11f21ed7a65c9aade239af462354bdc06a4958","sha512":"f5f88701a95ec4a143f6f62d9e2e6f2921f03afba9d429dc8a29199a41d1a793ad96d7fe8059ed137bf40f34dc1c2a2debe8eab4c1be5036585e0b7e618be792","ssdeep":"","tlshash":"6011c04856e34107659bac122fa5b61426e39457448efe233acdf780cf8926845ebb9c","first_seen":"2026-02-25T01:37:02.415424Z","last_seen":"2026-02-25T18:10:16.683154Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1727,"timings":{"blocked":780,"dns":223,"connect":177,"send":0,"wait":166,"receive":0,"ssl":378},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"publicidade.projetaideais.com.br/favicon.ico","fqdn":"publicidade.projetaideais.com.br","domain":"projetaideais.com.br","tld":"com.br"},"ip":{"addr":"162.214.88.105","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://publicidade.projetaideais.com.br/","date":"2026-02-25T18:09:54.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.publicidade.projetaideais.com.br","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Feb 2026 17:04:40 GMT","end":"Tue, 12 May 2026 17:04:39 GMT"},"fingerprint":{"sha1":"BE:29:47:D4:34:13:F3:BF:19:06:A6:C7:11:D9:7B:B9:77:6A:83:D1","sha256":"2A:F0:CF:E3:86:90:15:35:A6:29:49:F6:32:30:43:BF:2D:91:89:16:30:A7:9F:7C:BD:19:B4:F0:F0:D7:67:18"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: publicidade.projetaideais.com.br\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://publicidade.projetaideais.com.br/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 25 Feb 2026 18:09:50 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 01 Jan 1970 00:00:00 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1092\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1092,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"1edf540400ff194971672660b1522f28","sha1":"50a62dc71863c36f9c5d0cffadec0525aee5bb6a","sha256":"ad7ca3e36c6561b8258f91761e11f21ed7a65c9aade239af462354bdc06a4958","sha512":"f5f88701a95ec4a143f6f62d9e2e6f2921f03afba9d429dc8a29199a41d1a793ad96d7fe8059ed137bf40f34dc1c2a2debe8eab4c1be5036585e0b7e618be792","ssdeep":"","tlshash":"6011c04856e34107659bac122fa5b61426e39457448efe233acdf780cf8926845ebb9c","first_seen":"2026-02-25T01:37:02.415424Z","last_seen":"2026-02-25T18:10:16.683154Z","times_seen":2,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-25","alert":"Sinkholed","trigger":"publicidade.projetaideais.com.br","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}