{"report_id":"636482bf-af0e-4844-91b8-691687d0ef4b","version":6,"status":"done","tags":[],"date":"2026-06-03T10:52:08Z","url":{"schema":"http","addr":"srtydnnc.beer","fqdn":"srtydnnc.beer","domain":"srtydnnc.beer","tld":"beer"},"ip":{"addr":"178.16.52.101","port":0,"asn":40999,"as":"dus.net GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"srtydnnc.beer/","fqdn":"srtydnnc.beer","domain":"srtydnnc.beer","tld":"beer"},"title":"Server Offline","dom":{"size":2589,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"f6eed36a4f608e29a0ea0840fe12ce76","sha1":"bb953043761d48ac9d5eb1f1344c5cd429d587a7","sha256":"7033c4738aa32b7d833c5f88f6384d0a0a26da17f7ccdc952e5227c4df7e3409","sha512":"be340cf2650c7500e8622b7ccf0b84ed06202bda400a74c44f6d727fed1aab8208f5f2efbf0662c9d8cdf024bbb2a118c51a0baf2489fbad1846c802e5b6c6e4","ssdeep":"","tlshash":"6051115a979301436993c56467a393c823909407cd06ca3dbfcfa694cf4d364eae3b8c","dom_hash":"domhash9a1ef183926a23c2187cdb0bb87e2a85","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"srtydnnc.beer","fqdn":"srtydnnc.beer","domain":"srtydnnc.beer","tld":"beer"},"ip":{"addr":"178.16.52.101","port":0,"asn":40999,"as":"dus.net GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-08T10:52:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"srtydnnc.beer","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"srtydnnc.beer","ip":{"addr":"178.16.52.101","port":443,"asn":40999,"as":"dus.net GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2026-06-01","domain_rank":0,"first_seen":"2026-06-03T10:52:06.076352Z","last_seen":"2026-06-03T10:52:06.076352Z","alert_count":2,"request_count":2,"received_data":3170,"sent_data":915,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"srtydnnc.beer/favicon.ico","fqdn":"srtydnnc.beer","domain":"srtydnnc.beer","tld":"beer"},"ip":{"addr":"178.16.52.101","port":443,"asn":40999,"as":"dus.net GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://srtydnnc.beer/","date":"2026-06-03T10:51:47.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"srtydnnc.beer","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 01 Jun 2026 10:51:46 GMT","end":"Sun, 30 Aug 2026 10:51:45 GMT"},"fingerprint":{"sha1":"4B:4D:86:B2:D2:02:53:9B:C3:77:D0:5D:9A:33:4E:3D:4C:68:27:B3","sha256":"B2:A3:05:E6:5A:D9:01:C6:F6:81:39:47:0B:34:93:13:40:C7:C7:37:2A:FF:6E:A0:8D:71:EA:6A:76:D6:8C:7B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: srtydnnc.beer\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://srtydnnc.beer/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Wed, 03 Jun 2026 10:51:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-06-22T18:34:42.590364Z","times_seen":530060,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"srtydnnc.beer","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"srtydnnc.beer/","fqdn":"srtydnnc.beer","domain":"srtydnnc.beer","tld":"beer"},"ip":{"addr":"178.16.52.101","port":443,"asn":40999,"as":"dus.net GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-03T10:51:46.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"srtydnnc.beer","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 01 Jun 2026 10:51:46 GMT","end":"Sun, 30 Aug 2026 10:51:45 GMT"},"fingerprint":{"sha1":"4B:4D:86:B2:D2:02:53:9B:C3:77:D0:5D:9A:33:4E:3D:4C:68:27:B3","sha256":"B2:A3:05:E6:5A:D9:01:C6:F6:81:39:47:0B:34:93:13:40:C7:C7:37:2A:FF:6E:A0:8D:71:EA:6A:76:D6:8C:7B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: srtydnnc.beer\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 03 Jun 2026 10:51:47 GMT\r\ncontent-type: text/html\r\nlast-modified: Sun, 24 May 2026 08:46:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a12bb03-a2e\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2606,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"fc18fa1d102569269888e8a836b0465d","sha1":"49d857fb7d1fedb21f12e4bf450b77edc7539e8c","sha256":"8f48a5001d8baa3913359891d53870341d5a2eb345c7e19464ade2164b471fa2","sha512":"11757928f011f6c6380cd043939b87d57b3affa50f62bf9a8a130a8edbd3a81a9fabcb860bf1ceac4ce3bd7d55e160787211679e29429ba79be3c096fd99b9ad","ssdeep":"","tlshash":"7d51115a969301432593c5646ba393c823909507cd06ca3d7fcfa694cf4d364eae3b8c","first_seen":"2026-06-03T10:52:08.451748Z","last_seen":"2026-06-19T02:05:31.703175Z","times_seen":5,"resource_available":true,"data":null}},"time_used":327,"timings":{"blocked":133,"dns":1,"connect":60,"send":0,"wait":61,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-03","alert":"Sinkholed","trigger":"srtydnnc.beer","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}