{"report_id":"c0346ab3-1a7c-4766-82d1-51c9156801c8","version":6,"status":"done","tags":[],"date":"2026-04-12T12:50:07Z","url":{"schema":"http","addr":"regeln-und-vereinbarungen.com","fqdn":"regeln-und-vereinbarungen.com","domain":"regeln-und-vereinbarungen.com","tld":"com"},"ip":{"addr":"185.100.157.214","port":0,"asn":39134,"as":"Edinaya Set Limited Liability Company","country":"Poland","country_code":"PL"},"final":{"url":{"schema":"https","addr":"regeln-und-vereinbarungen.com/","fqdn":"regeln-und-vereinbarungen.com","domain":"regeln-und-vereinbarungen.com","tld":"com"},"title":"Ricardo Benutzerkonto","dom":{"size":12750,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"7662d2e865a684ed0885c54367f0299f","sha1":"55834ffdd13993067c96dfc3d4a6b6ecd17a024c","sha256":"f07bb0f409c269765bc316c64d8e07b6bfa19000cf45bbf3e5795d1b570e2cf6","sha512":"b139f9888dd541565edb0cc058e75db0c9f5b51f9dc8cd0762b58d344fee1c28c60b890cc5beffb5702b792de87da4a5c30a3dd5c9cd166cd019cb5a75c976d3","ssdeep":"192:LMfLiAXrXGklv5xqJfqGJLVGuJfF9qTNT8FBL8C1aJcTa9eci70:LMOuiAumzCnA/iQ","tlshash":"7d4252a757b3146579179aa92bfb6b4b2224c007c10bdd287fcc234c8f859d6ad93b4c","dom_hash":"domhash2aede4ca9df2231289fd72671fd1dc84","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"regeln-und-vereinbarungen.com","fqdn":"regeln-und-vereinbarungen.com","domain":"regeln-und-vereinbarungen.com","tld":"com"},"ip":{"addr":"185.100.157.214","port":0,"asn":39134,"as":"Edinaya Set Limited Liability Company","country":"Poland","country_code":"PL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-17T12:50:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-12","alert":"Phishing Block","trigger":"regeln-und-vereinbarungen.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"regeln-und-vereinbarungen.com","ip":{"addr":"185.100.157.214","port":443,"asn":39134,"as":"Edinaya Set Limited Liability Company","country":"Poland","country_code":"PL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":12,"request_count":2,"received_data":13612,"sent_data":963,"comment":"","tags":null,"fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"regeln-und-vereinbarungen.com/favicon.ico","fqdn":"regeln-und-vereinbarungen.com","domain":"regeln-und-vereinbarungen.com","tld":"com"},"ip":{"addr":"185.100.157.214","port":443,"asn":39134,"as":"Edinaya Set Limited Liability Company","country":"Poland","country_code":"PL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://regeln-und-vereinbarungen.com/","date":"2026-04-12T12:49:46.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"regeln-und-vereinbarungen.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 16:00:38 GMT","end":"Fri, 10 Jul 2026 16:00:37 GMT"},"fingerprint":{"sha1":"6D:91:BE:54:D2:1C:79:87:6D:3C:75:AA:33:75:52:E4:EA:6B:90:6A","sha256":"22:18:82:F6:CA:45:E9:C3:C7:CA:C0:8A:66:DC:D4:F0:07:17:AE:68:DE:9F:00:11:F2:69:35:D5:F1:32:59:FC"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: regeln-und-vereinbarungen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://regeln-und-vereinbarungen.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sun, 12 Apr 2026 12:49:46 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nContent-Length: 292\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":292,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"1d936934240d935ccc679238cda76e97","sha1":"719b89e11378a1a4be642ca763336a2b26dd9c8e","sha256":"ab1a9f46c21ae70a92ef4fa00ddddce12147b7938975bef5706da1a1e07874e6","sha512":"407e949e03e2ef7f6c0b466ce98924c83d734dfda80dfe636c9530677ef66a0c40c182dcb1c420761ef355b5c81399d0793fb57fb0284c26e6484a91897a7916","ssdeep":"","tlshash":"42e0e7ee4003f34f4511156035c115c1138c22e5707ec1d82dc3e44341dc37ecd9968c","first_seen":"2026-04-12T12:50:10.917378Z","last_seen":"2026-04-12T13:28:11.041048Z","times_seen":3,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-12","alert":"Phishing Block","trigger":"regeln-und-vereinbarungen.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"regeln-und-vereinbarungen.com/","fqdn":"regeln-und-vereinbarungen.com","domain":"regeln-und-vereinbarungen.com","tld":"com"},"ip":{"addr":"185.100.157.214","port":443,"asn":39134,"as":"Edinaya Set Limited Liability Company","country":"Poland","country_code":"PL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-12T12:49:46.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"regeln-und-vereinbarungen.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 11 Apr 2026 16:00:38 GMT","end":"Fri, 10 Jul 2026 16:00:37 GMT"},"fingerprint":{"sha1":"6D:91:BE:54:D2:1C:79:87:6D:3C:75:AA:33:75:52:E4:EA:6B:90:6A","sha256":"22:18:82:F6:CA:45:E9:C3:C7:CA:C0:8A:66:DC:D4:F0:07:17:AE:68:DE:9F:00:11:F2:69:35:D5:F1:32:59:FC"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: regeln-und-vereinbarungen.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 12 Apr 2026 12:49:46 GMT\r\nServer: Apache/2.4.58 (Ubuntu)\r\nLast-Modified: Sat, 11 Apr 2026 17:06:19 GMT\r\nETag: \"31dd-64f3244af95e7-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 3217\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.58","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":12765,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"babdcf052875ae6ccd1c1189164632db","sha1":"1a8e3c576617d379e5a756210f3eecd3bc067f9b","sha256":"5c291338eda253450f59d4f14f3853e8c7580a3a097b0e6652f6cfcaccfa3e6d","sha512":"a24779dad625aed4a3b7b17156bb980de01a2cae2b180125d878bcce5b63d55c4339a6fca2b5f5c6b7d5cf06329f1748d8e816bda5c24a6b5fbc6a0261dfba1d","ssdeep":"192:FMfLiAXrXGklv5xqJfqGJLVGuJfF9qTNT8FBL8C1aJcTa9hci70:FMOuiAumzCnAKiQ","tlshash":"b54252a757b3146579179aa92bfb6b4b2224c007c10bdc287fcd234c8f859d6ad93b4c","first_seen":"2026-04-12T12:50:10.920708Z","last_seen":"2026-04-12T13:28:11.040541Z","times_seen":3,"resource_available":true,"data":null}},"time_used":283,"timings":{"blocked":121,"dns":27,"connect":40,"send":0,"wait":41,"receive":0,"ssl":51},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-12","alert":"Phishing Block","trigger":"regeln-und-vereinbarungen.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-12","alert":"Sinkholed","trigger":"regeln-und-vereinbarungen.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}