{"report_id":"6108b8e8-b967-4e88-8b0c-5fb187d2ee63","version":6,"status":"done","tags":[],"date":"2026-03-10T10:31:54Z","url":{"schema":"http","addr":"bricheteau.eu/","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":0,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"bricheteau.eu/static/login/","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"title":"Carbonio Authentication","dom":{"size":13278,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (7867)","md5":"ecd20af1c40ce5b9aca0ff2fcc8772ce","sha1":"ab28416c87cf8acc7a30949bdc75cab752c7281e","sha256":"4525592fc61c810e30b3388933e585c23494f35d5a0c965f4fa5c3de69599ca2","sha512":"d808f970412b75301e72a918129eedcab6e6acef076e0fba38207e91f3f3c108274a2d7ed67b12554b81f47c90b8ffe657b63798a294c86fb6c80ecf7b5c1dd1","ssdeep":"192:kKMzEDjFSkjfs6tasjVcrJere85R6VkGRNDuGFuZLrF8wW0bbU:kKM8xjjfsHqVcNyHQ31uGFuZLx8wWAU","tlshash":"56524c731b052035a317c0dd64f1ab19a61ff3074973dc0df8bde624e2d9c69aa9385a","dom_hash":"domhashe3b29590815ad0cd1342aea861cb060d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bricheteau.eu/","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":0,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-14T10:31:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bricheteau.eu","ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-10T10:31:56.100006Z","last_seen":"2026-03-10T10:31:56.100006Z","alert_count":12,"request_count":12,"received_data":3231060,"sent_data":5505,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bricheteau.eu/static/login/index.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"00bacb2c186f99f90ceecfdd60b5bec4","sha1":"10597fa3c66021c7f926669e207f4961303a6c6e","sha256":"2ee96b5323f17bfa67abd1152a7e09b9579c5642c96f12decda4e5b3f256d6c6","sha512":"c4e4bf4f304973132f8a090a1ba21b0abfd7ea299fff8db32228166a2f88eaeb495520fb309fd1605c112db305319b3f8ca07fbbbd4ce10522784be82a7a9347","ssdeep":"49152:7x6lM12Fn8iscAPFNvDfboeCtgQkeUvqVZHHDelGEgnA6RWLs8SQ1U1+6tpn7ywD:2n8iscAPFNvDfboeCtgQkeUvqVZHHDeG","tlshash":"18d55dbc716464cd5177811790bb260cef7d7e2ff87c4460a8dde5ac387aa08d2a7a24","size":2918088,"data":"","first_seen":"2026-03-08T04:33:17.627905Z","last_seen":"2026-03-10T10:32:01.08251Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/398.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"c88de4cb8d4da5b1847a8b740542638f","sha1":"41caa143fc72ed1df23861d4be152926fd54d749","sha256":"ba5736f749da6bf4b11945e253fe6f9d405a6a29d28eada281958e0d5124f278","sha512":"6da35be27c6004fc7e4d7d101ba30de74baeb81b03fffa800fe2a549a802281da0b632180c1c9972dcc4a308a77e26c1e970e2e660ecfa27841d3d478fa2c478","ssdeep":"768:vql/X8aIYs7gKJotf26OBThudIrONuyytxot0nbWspe1zh/+tWZGPxPYZGAK5Yjj:vwfs7guotf2jEJhTQg","tlshash":"f1e2d75ef396b73807d9f684d16a1c087a1b086eca4ca1f4aad1e281797ccc74117b7b","size":31678,"data":"","first_seen":"2026-03-08T04:33:17.617367Z","last_seen":"2026-03-10T10:32:01.073955Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/394.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c9304d962131247e932b64d5c2d79fe","sha1":"52f3a2892477998cc7fc0fbe8983c6c2e7e20ecd","sha256":"c1b659894536e2a73ce168767665bbab628185ab84b96419584f385ccbed6f04","sha512":"7bb431b1030231616336cd40b43cd554089ff1b5bf383902cadb2628591ee4ee169d060bafc17b4b480d75aa62ef1670783972dc636238e5a4fd8feb38689eae","ssdeep":"768:aVweVCZXZGrQ4nS0CHkO0TEZCfpXA8q4BMrSOPpFUrh0e1d+OfQ6zSv6S:aVPVCZXZGUHkO0TEZew87BMm+8+OfQ6E","tlshash":"4a230a8435ab944d1ad7c07b8037261df3693a0551290f2076b6eeac7478ecba6339fd","size":48809,"data":"","first_seen":"2026-03-08T04:33:17.625649Z","last_seen":"2026-03-10T10:32:01.060917Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"bricheteau.eu/static/login/394.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:32.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/394.js HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6925ad2c-bea9\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48809,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (48770)","md5":"2c9304d962131247e932b64d5c2d79fe","sha1":"52f3a2892477998cc7fc0fbe8983c6c2e7e20ecd","sha256":"c1b659894536e2a73ce168767665bbab628185ab84b96419584f385ccbed6f04","sha512":"7bb431b1030231616336cd40b43cd554089ff1b5bf383902cadb2628591ee4ee169d060bafc17b4b480d75aa62ef1670783972dc636238e5a4fd8feb38689eae","ssdeep":"768:aVweVCZXZGrQ4nS0CHkO0TEZCfpXA8q4BMrSOPpFUrh0e1d+OfQ6zSv6S:aVPVCZXZGUHkO0TEZew87BMm+8+OfQ6E","tlshash":"4a230a8435ab944d1ad7c07b8037261df3693a0551290f2076b6eeac7478ecba6339fd","first_seen":"2026-03-08T04:33:17.625649Z","last_seen":"2026-03-10T10:32:01.060917Z","times_seen":2,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/assets/c469e23959fd19cc40fbb5e56c083c86.png","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:32.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/assets/c469e23959fd19cc40fbb5e56c083c86.png HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: image/png\r\ncontent-length: 8607\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: \"6925ad2c-219f\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8607,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 602 x 80, 8-bit/color RGBA, non-interlaced","md5":"47c8e8d9110532785929743075ed058d","sha1":"2af3ca5767dbe333c9cf8d9c476e7fd74eb05482","sha256":"3689ebb5bfc0bd7fd599148f97d66ed3ab3bce6c13931ae9a37bd14c3f0178bf","sha512":"d97a0267eeebe01b0110e220e8372ba825f7635ce4b90eeed405e484039b079d62e268ce6387bf8f59c41134627dc75704dd12178db818c46ed68d9e4a491a64","ssdeep":"192:4Dzu0/iXLvyS6Ri6kqiGGWP8rLgodNpOpBqopmmcBZTDeqYENmXphix6g:Uy4UvXUQqijQ67bovqZTDF3gXvq6g","tlshash":"8102bff61b52bab9c0713fa72c202a17215f53da10e123a3bd8530a4b3fbc540c563ba","first_seen":"2026-01-02T23:45:42.242168Z","last_seen":"2026-03-10T10:32:01.063639Z","times_seen":3,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-10T10:31:30.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 307 Temporary Redirect\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:30 GMT\r\ncontent-type: text/html\r\ncontent-length: 164\r\nlocation: https://bricheteau.eu/static/login/\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"307","status_text":"Temporary Redirect","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":388,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":230,"timings":{"blocked":99,"dns":26,"connect":28,"send":0,"wait":30,"receive":1,"ssl":43},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-10T10:31:30.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/ HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:30 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6925ad2c-184\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":388,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (388), with no line terminators","md5":"b829355319f84454a7b51aa34c469ea7","sha1":"dc4e93d95188568fa1146577b14eb5a5824a93ef","sha256":"e05a546508be98da2f39b9a5df2e2f5ca630f3e03d4a068bd2e9ecd8016c8e68","sha512":"e1d1fa26f4e0ceda42752dc450ada2aef05d84402e84979745345d6b1344ed01e25e11041f51a953d32147bb0746888918e1108ed5be2afe46535529eae26349","ssdeep":"","tlshash":"fbe068e38421042e53500b746ce2b10d868aad60bb869c00b5cd21bd5cc1f8ec9e7984","first_seen":"2026-03-08T04:33:17.622467Z","last_seen":"2026-03-10T10:32:01.066618Z","times_seen":2,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/index.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:31.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/index.js HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:31 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6925ad2c-2c86c8\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2918088,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65277)","md5":"272dbbf592cc4af6c380f26938683d57","sha1":"5376c83676fa0a3ac59e73a94aaa00f2382eac59","sha256":"a8954d5d17a23b7086be4e1d2ef5911705185294be79bc355bb84ee5a3255f52","sha512":"87fb05072fdb61722062c4fd674af08df0592ef82c221509630cb95a0081b30a609051abfcba7b04315d14f61cbeb090129ae34caf9cf8501149f4cd84bc126c","ssdeep":"24576:7x6lM12Kan8iscAPFNvDfboeCtgQkeUvqVZHHDelGEgnA6RWLs8SQ1R12KwBkvSc:7x6lM12Fn8iscAPFNvDfboeCtgQkeUvn","tlshash":"65257cbc7062b44a8677411380af260dfe792e1fe85c8450f59af5dc3d7da0892baf58","first_seen":"2026-03-08T04:33:17.620051Z","last_seen":"2026-03-10T10:32:01.068578Z","times_seen":2,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/assets/464946410cff4b6d00ddcab50ea85499.svg","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:31.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/assets/464946410cff4b6d00ddcab50ea85499.svg HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:31 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6925ad2c-bf12\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48914,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"faee671d4711763abfad9c931ddd2d94","sha1":"40a037ef15f6889f3edab99964e841f4a080fec1","sha256":"59c2cd88ec0bdbf7a2e7baa4f37f689e98f1ed87de892beb38103b546976cfd1","sha512":"08d3ae5eeb21502243872fbb883da728c29200e8794e8094908e0db1b0f3cbbb7cb05afb17bdc99b7676a13a9a6cbfd4fd0af2b631030408897fa3a2747bc9aa","ssdeep":"768:gdEirPDQ/UlFIdjPGHuq4vGmppXfIzlXrduK83L1y+bacvEDtm9Hy57Q7CGe/c0x:yDeCIlGmppQJkJ9nE5P57Q7Uxx","tlshash":"272350dd2b681af29d5aa3dbef13009d661f60fa57c08b70c7596f0a240b835dc99ec1","first_seen":"2026-01-02T23:45:42.235639Z","last_seen":"2026-04-01T08:58:16.86746Z","times_seen":5,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/i18n/en-US.json","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:31.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/i18n/en-US.json HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: application/json\r\nlast-modified: Tue, 16 Dec 2025 13:31:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69415f2f-2bb\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":699,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"d7d6f525ceebbfc7a90c4158cd0c5e27","sha1":"5e3dc5659587e5db36839091b858f9dbd0e611e5","sha256":"844f48cbd82ba66da21d5bb7e6ec58af3734c1f45db19bbaa545d5fb7183c4e2","sha512":"4a496ed42d17c30e72641fc32b269bdd43ede5e1305fe3520ef45670cc777e01f50511b72adcf19146cc620e9abccb4be71cb41bf821da52d64513bbc9f32eab","ssdeep":"","tlshash":"fb017624e1454c2752d001aae4039815325e01730f90b91c7b505b2e6fad6bfe5f725e","first_seen":"2026-01-02T23:45:42.240571Z","last_seen":"2026-04-01T08:58:16.882492Z","times_seen":6,"resource_available":false,"data":null}},"time_used":418,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":418,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/398.js","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:32.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/398.js HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6925ad2c-7bbe\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31678,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (31646)","md5":"c88de4cb8d4da5b1847a8b740542638f","sha1":"41caa143fc72ed1df23861d4be152926fd54d749","sha256":"ba5736f749da6bf4b11945e253fe6f9d405a6a29d28eada281958e0d5124f278","sha512":"6da35be27c6004fc7e4d7d101ba30de74baeb81b03fffa800fe2a549a802281da0b632180c1c9972dcc4a308a77e26c1e970e2e660ecfa27841d3d478fa2c478","ssdeep":"768:vql/X8aIYs7gKJotf26OBThudIrONuyytxot0nbWspe1zh/+tWZGPxPYZGAK5Yjj:vwfs7guotf2jEJhTQg","tlshash":"f1e2d75ef396b73807d9f684d16a1c087a1b086eca4ca1f4aad1e281797ccc74117b7b","first_seen":"2026-03-08T04:33:17.617367Z","last_seen":"2026-03-10T10:32:01.073955Z","times_seen":2,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/assets/8b90fe7b942c6f389f1ddd01103d3b0e.jpg","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:32.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/assets/8b90fe7b942c6f389f1ddd01103d3b0e.jpg HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 135128\r\nlast-modified: Tue, 25 Nov 2025 13:20:44 GMT\r\nvary: Accept-Encoding\r\netag: \"6925ad2c-20fd8\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":135128,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, xresolution=74, yresolution=82, resolutionunit=2, datetime=2021:11:03 09:34:26], baseline, precision 8, 1920x1080, components 3","md5":"d7af371971ef4317e943107ee49c2132","sha1":"63e89c927ad19577b719f756d2dee4b460d25271","sha256":"fccd7ce148c32d85247b61111660f16f046bb2cabbc76a39238f993c9d40103b","sha512":"f331526f08f02f1272d89393621e4fa8fab4064242cbaa3679a1449361a9a694225385fde2a8a424feb1f7697c20aee83bc965f675b869a79d1ed9d2ef89451e","ssdeep":"3072:Xdj0DN4PkWisVNtP3ZgZJDjqKFMp1LZcQEI5U2imLX65hP3:JSxWichCJ6hNKQEIHiAX2x3","tlshash":"87d3027cc3368ac3e38eeb71988a6c22d861e71655ec315539dd94bd6fc3b580c1826e","first_seen":"2026-01-02T23:45:42.241361Z","last_seen":"2026-04-01T08:58:16.883637Z","times_seen":4,"resource_available":false,"data":null}},"time_used":122,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":68,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/services/catalog/services","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:31.798Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /services/catalog/services HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nvary: Accept-Encoding\r\nx-envoy-upstream-service-time: 457\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":550,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"3b14781a34dd1158eb392dc3b31178a4","sha1":"6eea8300d3b090d250a9ad164dd1a845c49e5444","sha256":"582d5dcd75a43a4ccf9f5e9f1bb9f6b53b5fd966ddbac93d66141e725b72e8a6","sha512":"94e0add4208b081a55a34abc377a099cb67c232454ab09e778f3380c30320bbf790b3a01423ffc14e268210402eb8821cfe28459e58129c7600a8e331b6af1f5","ssdeep":"","tlshash":"b9f0e5a7438cccbad726235a3c913c311f83393175a72f03221d98687aec827e046e8c","first_seen":"2026-03-10T10:32:01.077969Z","last_seen":"2026-03-10T10:32:01.077969Z","times_seen":1,"resource_available":false,"data":null}},"time_used":486,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":486,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/static/login/i18n/en.json","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:31.850Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /static/login/i18n/en.json HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: application/json\r\nlast-modified: Tue, 16 Dec 2025 13:31:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69415f2f-135a\"\r\nexpect-ct: max-age=86400\r\npermissions-policy: geolocation=(self), microphone=(self)\r\nreferrer-policy: same-origin\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-frame-options: sameorigin\r\nx-robots-tag: noindex, nofollow\r\nx-xss-protection: 1; mode=block\r\ncontent-security-policy: default-src 'self' data: blob: cid:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.zextras.tools *.jsdelivr.net; style-src * 'unsafe-inline'; img-src * data: blob: cid:; font-src * data:; connect-src 'self' *.zextras.tools *.jsdelivr.net; media-src * blob: data: cid:; object-src 'self'; child-src 'self' blob: data: cid:; frame-src 'self' blob: data: cid:; frame-ancestors 'self'; form-action 'self';\r\ncache-control: no-cache,must-revalidate,no-transform,max-age=604800\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4954,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"61b6c5eba3ea5d4a7fa28beb89ade38f","sha1":"ff2f67ed8b92db62cedf49e9671be38953ce3c7d","sha256":"28d7643daf257122241ac0bd70a608a466fa54de0d82d6c54270f0cc6dda7ffb","sha512":"8c0a7cf74c8aa94387df09beec6ae50a71656f1e568587096bd93b49a6680a12d6891afe8b5bd276b45344785e7a12107e09c4037d4d83ecff6a573fffe86243","ssdeep":"96:OJ9QSq2o/EtQiSreWHkkHdNDWcQNe4L5a4jNJbcon6RKGjanAU/1P:OLBAL/pQ7L5a4hJbxFGVUZ","tlshash":"91a13116c1408e1705d551969017914232a581979f213e0c3fb88b9c3fafeaf9af794f","first_seen":"2026-03-08T04:33:17.616565Z","last_seen":"2026-04-01T08:58:16.863723Z","times_seen":3,"resource_available":false,"data":null}},"time_used":419,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":419,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bricheteau.eu/favicon.ico","fqdn":"bricheteau.eu","domain":"bricheteau.eu","tld":"eu"},"ip":{"addr":"212.129.37.5","port":443,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bricheteau.eu/static/login/","date":"2026-03-10T10:31:32.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"new.3afm.company","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Mar 2026 11:14:35 GMT","end":"Fri, 05 Jun 2026 11:14:34 GMT"},"fingerprint":{"sha1":"D1:F1:B4:4F:07:16:1B:B3:F2:DB:4C:D8:6C:FB:6E:43:E6:9D:B4:64","sha256":"07:57:FE:5A:CE:7B:3D:6D:3E:8D:8A:7D:E6:BA:CD:A8:8F:55:C1:94:FC:D5:E8:B7:3C:BA:EC:D0:61:F5:03:15"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bricheteau.eu\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bricheteau.eu/static/login/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Tue, 10 Mar 2026 10:31:32 GMT\r\ncontent-type: text/html\r\nvary: Accept-Encoding\r\netag: W/\"691af404-52f0\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21232,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1124)","md5":"f91d567ddaa5d06507699c1009050353","sha1":"e3318c4cdcf2c120cc594fbfa9b13cab09e78d50","sha256":"4f03764f2643f2d8444678a91a7ef63895b83f214f09a8902430723e50788021","sha512":"f2f470726f24ea4755fdb1d776876a3b8a1e559fc4a56872bd00dd2d5f6940e67d82661d2ba406e2fbc2711f0efc9edb0714cbbbbbd52bd443fe5db4515ddafa","ssdeep":"192:5yUf9+FwKJZjNZqvjEwJd9cmo+E9uQxEuX7hciJh7VZhEXKnf1Oms5EScyxRv6NF:jowVP1QxKEYo+j0vfkM","tlshash":"ce920bee27598cbcbd1346a6eb653331601a91b34b85a348f97e01742f0644cea7fed4","first_seen":"2025-01-23T15:49:59.238058Z","last_seen":"2026-03-18T06:54:01.609196Z","times_seen":7,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":120,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-10","alert":"Sinkholed","trigger":"bricheteau.eu","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}