{"report_id":"98a1759e-19d4-4327-8ac8-435dd6aef68e","version":6,"status":"done","tags":["opendir"],"date":"2024-06-11T18:21:22Z","url":{"schema":"http","addr":"kodi-unlimited-support.de/","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"ip":{"addr":"188.68.47.15","port":0,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"kodi-unlimited-support.de/","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"title":"Index of /"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T13:44:24Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"kodi-unlimited-support.de","ip":{"addr":"188.68.47.15","port":443,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2020-12-06 23:14:41","last_seen":"2024-03-21 03:56:59","alert_count":1,"request_count":4,"received_data":3012,"sent_data":1860,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"kodi-unlimited-support.de/","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"ip":{"addr":"188.68.47.15","port":443,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-06-11T18:20:57.917Z","timestamp":1718130057917,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kodi-unlimited-support.de","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 19 May 2024 13:19:04 GMT","end":"Sat, 17 Aug 2024 13:19:03 GMT"},"fingerprint":{"sha1":"CD:02:1D:79:EF:2B:A1:A7:CD:9F:1C:F1:C2:4F:1B:F4:87:FB:59:9E","sha256":"BD:7C:00:29:E2:03:5E:65:0D:B2:56:93:3C:89:4C:B9:20:4F:A6:46:99:99:72:DE:CB:B9:15:0C:49:12:7E:6E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: kodi-unlimited-support.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 11 Jun 2024 18:20:58 GMT\r\ncontent-type: text/html;charset=UTF-8\r\ncontent-length: 579\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-robots-tag: noindex\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":579,"size_decoded":2033,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"7cad0c8a025a18d2fd1a5a01d3980379","sha1":"786544a1329a3364cfee188032e5a09024587c48","sha256":"130f57120e4af3423cf39c670a7e727a3f4ba853e71fe9bec46d59472ec3a192","sha512":"80643bc60aa4d6bed8fb0548e366cc2b1d883ab4997b7bd3ab6cb97a3a5b214c168aa0c4918109d27c2c53bdd0a41124444e46f056f7ddc410d21023a6828639","ssdeep":"","tlshash":"e4414849e5e2837769425467d2407cdacaf38eb983f008657c4fa8cbdb999fcc5026d2","first_seen":"2024-08-19T20:16:27.883175Z","last_seen":"2024-08-19T20:16:27.883175Z","times_seen":1,"resource_available":false,"data":null}},"time_used":622,"timings":{"blocked":293,"dns":0,"connect":24,"send":0,"wait":29,"receive":0,"ssl":268},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]}},{"url":{"schema":"https","addr":"kodi-unlimited-support.de/icons/blank.gif","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"ip":{"addr":"188.68.47.15","port":443,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kodi-unlimited-support.de/","date":"2024-06-11T18:20:58.561Z","timestamp":1718130058561,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kodi-unlimited-support.de","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 19 May 2024 13:19:04 GMT","end":"Sat, 17 Aug 2024 13:19:03 GMT"},"fingerprint":{"sha1":"CD:02:1D:79:EF:2B:A1:A7:CD:9F:1C:F1:C2:4F:1B:F4:87:FB:59:9E","sha256":"BD:7C:00:29:E2:03:5E:65:0D:B2:56:93:3C:89:4C:B9:20:4F:A6:46:99:99:72:DE:CB:B9:15:0C:49:12:7E:6E"}}},"request":{"raw":"GET /icons/blank.gif HTTP/1.1\r\nHost: kodi-unlimited-support.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kodi-unlimited-support.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 11 Jun 2024 18:20:58 GMT\r\ncontent-type: image/gif\r\ncontent-length: 148\r\nlast-modified: Sat, 20 Nov 2004 20:16:24 GMT\r\netag: \"94-3e9564c23b600\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":148,"size_decoded":148,"mime_type":"image/gif","magic":"GIF image data, version 89a, 20 x 22","md5":"19517fb39a31be6b8d7ccf53ad84908f","sha1":"ebbcfdc6acc99f7aac3bf7fe72bc55f07f03f7e9","sha256":"3cb0e54babf019703fe671a32fcc3947aab9079ec2871cf0f9639245cc12d878","sha512":"be752ff4c7aa3ab46fdbd93555a17e422e7c8b8661f40f899f51ec9393b510dcb2e66436a4f2c78a42af77dd95e01a3438c88cfaa3e0b02694c1912d5294ee16","ssdeep":"","tlshash":"80c02b4edec0e411c040553c0c0db7577702f1500b277108b482b3c72ef780258b2447","first_seen":"2023-05-02T00:24:31Z","last_seen":"2026-04-06T02:59:20.910324Z","times_seen":8392,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kodi-unlimited-support.de/icons/folder.gif","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"ip":{"addr":"188.68.47.15","port":443,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kodi-unlimited-support.de/","date":"2024-06-11T18:20:58.566Z","timestamp":1718130058566,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kodi-unlimited-support.de","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 19 May 2024 13:19:04 GMT","end":"Sat, 17 Aug 2024 13:19:03 GMT"},"fingerprint":{"sha1":"CD:02:1D:79:EF:2B:A1:A7:CD:9F:1C:F1:C2:4F:1B:F4:87:FB:59:9E","sha256":"BD:7C:00:29:E2:03:5E:65:0D:B2:56:93:3C:89:4C:B9:20:4F:A6:46:99:99:72:DE:CB:B9:15:0C:49:12:7E:6E"}}},"request":{"raw":"GET /icons/folder.gif HTTP/1.1\r\nHost: kodi-unlimited-support.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kodi-unlimited-support.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 11 Jun 2024 18:20:58 GMT\r\ncontent-type: image/gif\r\ncontent-length: 225\r\nlast-modified: Sat, 20 Nov 2004 20:16:24 GMT\r\netag: \"e1-3e9564c23b600\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":225,"size_decoded":225,"mime_type":"image/gif","magic":"GIF image data, version 89a, 20 x 22","md5":"d342cba375fea336967317bdb5d7cf19","sha1":"768de3abb08abc5fe2db93454a78c9d3d955d5e4","sha256":"fbe5eca717cfbcb58891d431f9afaf30aa740d9fce007e820a599f22afa0dee2","sha512":"7fbf98d95066a7443805da1645490e0e98b7674d092e496acecea6e6bebbf74385e687db788517ab412dd60381d1f7f2243ef167646bd906d460e67eaa15e315","ssdeep":"","tlshash":"b6d0a72585914d50dd40b5bc04053552b7e2e2128babbc00e94259cb5a6685164b3406","first_seen":"2023-05-02T00:24:31Z","last_seen":"2026-04-06T02:59:20.91576Z","times_seen":4022,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kodi-unlimited-support.de/favicon.ico","fqdn":"kodi-unlimited-support.de","domain":"kodi-unlimited-support.de","tld":"de"},"ip":{"addr":"188.68.47.15","port":443,"asn":197540,"as":"netcup GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kodi-unlimited-support.de/","date":"2024-06-11T18:20:58.629Z","timestamp":1718130058629,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"kodi-unlimited-support.de","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 19 May 2024 13:19:04 GMT","end":"Sat, 17 Aug 2024 13:19:03 GMT"},"fingerprint":{"sha1":"CD:02:1D:79:EF:2B:A1:A7:CD:9F:1C:F1:C2:4F:1B:F4:87:FB:59:9E","sha256":"BD:7C:00:29:E2:03:5E:65:0D:B2:56:93:3C:89:4C:B9:20:4F:A6:46:99:99:72:DE:CB:B9:15:0C:49:12:7E:6E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: kodi-unlimited-support.de\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kodi-unlimited-support.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 11 Jun 2024 18:20:58 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 1150\r\nlast-modified: Thu, 10 Dec 2020 19:04:42 GMT\r\netag: \"5fd2714a-47e\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1150,"size_decoded":1150,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"2df22b7b9d06679ca9cb9019d65a7fc7","sha1":"fe6e9f2e59b5e6d06d14936d6b743da540cfe84f","sha256":"d03c3c93ee6f581e545a1e95c81f956ac24a3cd1962e579b2e8a94745997a239","sha512":"389d84158995cde87f5f7ab522508d12112d720114f018bf00f43be938e17f434cb2201cc4d45fa1aad3553ee4dbae8a9b74a88662af23915c266d0a8f98a7f3","ssdeep":"","tlshash":"ec21fd71718ce80a9cd7133adc0668f9248edc4dc823b66746587e4db7f9003aaa81b8","first_seen":"2024-06-11T20:21:23Z","last_seen":"2026-02-02T22:33:53.039296Z","times_seen":7,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}