{"report_id":"bbc85d05-86e4-4a8a-926e-c5b4b8bcb6c9","version":6,"status":"done","tags":[],"date":"2025-11-02T19:34:00Z","url":{"schema":"http","addr":"rklrpx.com","fqdn":"rklrpx.com","domain":"rklrpx.com","tld":"com"},"ip":{"addr":"151.101.130.133","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"rklrpx.com/","fqdn":"rklrpx.com","domain":"rklrpx.com","tld":"com"},"title":"Test Page","dom":{"size":326,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"55ccdb77fb9316be9d3851c6da83b20a","sha1":"7ae1a14e0ec1f330118e44cc6bb086702606297e","sha256":"f3286108f3cab30fdaf7ecc267993afcb2134ff3c33e05cc8513e3982d0a219d","sha512":"17a38d32bf551b0330f2727798be6814b7870b55695fda8e468e53a618d62ad2898ce2703d64a4c23145cd3826ed88b5a25f9e096141d5204e7d470effff26b5","ssdeep":"","tlshash":"62e0c21908f1b15a5a20c5881ef1fb68ac827643879ae950fa6d51aa6f95c43c6432ac","dom_hash":"domhash4a09bc845cacaf4a74f655abf08a17bd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":"PGh0bWwgbGFuZz0iZW4iPjxoZWFkPgogICAgPG1ldGEgY2hhcnNldD0idXRmLTgiPgogICAgPHRpdGxlPlRlc3QgUGFnZTwvdGl0bGU+CjwvaGVhZD4KPGJvZHk+CiAgICA8ZGl2IGNsYXNzPSJuYXZiYXItaGVhZGVyIj4KICAgICAgICA8YSBjbGFzcz0ibmF2YmFyLWJyYW5kIiBocmVmPSJodHRwOi8vd3d3Lm1wYXJ0aWNsZS5jb20iPgogICAgICAgICAgICA8aW1nIHNyYz0iaHR0cDovL3N0YXRpYy5tcGFydGljbGUuY29tL3B1YmxpYy9sb2dvLWJsay5wbmciIHdpZHRoPSIyMDgiIGhlaWdodD0iMzIiPgogICAgICAgIDwvYT4KICAgIDwvZGl2PgoKPC9ib2R5PjwvaHRtbD4="}},"submit":{"url":{"schema":"http","addr":"rklrpx.com","fqdn":"rklrpx.com","domain":"rklrpx.com","tld":"com"},"ip":{"addr":"151.101.130.133","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98","country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-07T19:34:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"rklrpx.com","ip":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2025-05-30","domain_rank":0,"first_seen":"2025-09-09T23:11:19.626345Z","last_seen":"2025-10-26T03:25:26.507961Z","alert_count":4,"request_count":2,"received_data":1901,"sent_data":906,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"rklrpx.com/","fqdn":"rklrpx.com","domain":"rklrpx.com","tld":"com"},"ip":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-02T19:33:34.341Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rklrpx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 19:47:59 GMT","end":"Fri, 26 Dec 2025 19:47:58 GMT"},"fingerprint":{"sha1":"11:A0:54:6E:80:82:7C:0C:01:5C:87:2F:5B:A8:13:63:71:40:AE:2C","sha256":"FD:03:21:43:1D:80:E9:75:22:68:91:F4:47:37:ED:DF:5B:2B:25:F4:DF:16:71:EE:77:D3:4A:1A:03:C0:22:3B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: rklrpx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nx-amz-meta-cb-modifiedtime: Thu, 21 May 2015 21:26:01 GMT\r\nlast-modified: Thu, 21 May 2015 21:25:18 GMT\r\nx-amz-version-id: null\r\netag: \"f84600cbcefc232cf9bad289fa75995d\"\r\nserver: AmazonS3\r\nvia: 1.1 0228ede2724c7f2c1f6a417655502162.cloudfront.net (CloudFront), 1.1 varnish\r\nx-amz-cf-pop: HEL51-P5\r\nx-amz-cf-id: URlBm8HLQAAjG4dK7KnIcjWG5JXL5CZTkeUSdgWBgxAYnEIieKnPYg==\r\naccept-ranges: bytes\r\nage: 0\r\ndate: Sun, 02 Nov 2025 19:33:34 GMT\r\nx-served-by: cache-hel1410023-HEL\r\nx-timer: S1762112014.390785,VS0,VE9\r\nstrict-transport-security: max-age=300\r\nx-cache: MISS\r\nx-cache-hits: 0\r\ncontent-length: 358\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":358,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"f84600cbcefc232cf9bad289fa75995d","sha1":"4e65588815d25e98c493731fc3ed9843d4fef1eb","sha256":"bd791bf57c9a3de52012a43c6f1726c9c3b4e658d63e72f5eae3ea63c070dd72","sha512":"7318496116861025f3f7fa641a0844e3c28fc691dc45681c4a60c66eeb9121c7258113d64a169b3e037a09cdb3a048bfb80d9c3fccf848bc4dbb171be2257fff","ssdeep":"","tlshash":"d6e0263408c07c4a467085a81df0f6a8fc83328342896600f59c21572fa2801ca43288","first_seen":"2025-10-17T19:15:45.872138Z","last_seen":"2025-12-03T12:02:32.85942Z","times_seen":9,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":49,"dns":1,"connect":13,"send":0,"wait":22,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rklrpx.com/favicon.ico","fqdn":"rklrpx.com","domain":"rklrpx.com","tld":"com"},"ip":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rklrpx.com/","date":"2025-11-02T19:33:34.635Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rklrpx.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 27 Sep 2025 19:47:59 GMT","end":"Fri, 26 Dec 2025 19:47:58 GMT"},"fingerprint":{"sha1":"11:A0:54:6E:80:82:7C:0C:01:5C:87:2F:5B:A8:13:63:71:40:AE:2C","sha256":"FD:03:21:43:1D:80:E9:75:22:68:91:F4:47:37:ED:DF:5B:2B:25:F4:DF:16:71:EE:77:D3:4A:1A:03:C0:22:3B"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: rklrpx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rklrpx.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html; charset=utf-8\r\nserver: AmazonS3\r\nvia: 1.1 6ff84c1138517f188d3a72f8ae434f20.cloudfront.net (CloudFront), 1.1 varnish\r\nx-amz-cf-pop: HEL51-P5\r\nx-amz-cf-id: xSOLdlKmGJwt3e5__hGoHYWn5yxKgOPmGG4QMLaPSdqaBHUvnMnO9w==\r\naccept-ranges: bytes\r\ndate: Sun, 02 Nov 2025 19:33:34 GMT\r\nage: 0\r\nx-served-by: cache-hel1410023-HEL\r\nx-timer: S1762112015.634910,VS0,VE166\r\nstrict-transport-security: max-age=300\r\nx-cache: MISS\r\nx-cache-hits: 0\r\ncontent-length: 366\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":366,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"adfe8a9d0ef3d087cf0e277353e0ce74","sha1":"7938c1f16d33eae1fe8313a2da8d1d75919e4602","sha256":"e6fd2acd6a3c4fa7756f77cc45b31878d1a2dbfc66c64878e62dc07d6d615193","sha512":"a3be0503beefaaf1b786c2c19ba6b52f3299bf4a2444c51e01aec586ce05978852b22d32835a2f0d93c2596e48354a661530899bf512fe0cdd5d51ef9c64abfc","ssdeep":"","tlshash":"4de0205f6a27c604f50040157dd123c66bdf037ee5b50237b509c0c3718a9a99dc71de","first_seen":"2025-11-02T19:34:01.198313Z","last_seen":"2025-11-02T19:34:01.198313Z","times_seen":1,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-11-02","alert":"Sinkholed","trigger":"rklrpx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}