{"report_id":"d0d716c3-a196-439d-a0b8-9e573ff03c53","version":6,"status":"done","tags":[],"date":"2025-10-25T09:15:23Z","url":{"schema":"http","addr":"mail.paysagiste-grand-est.fr/o2s-cgi/security-challenge?a=verify-response","fqdn":"mail.paysagiste-grand-est.fr","domain":"paysagiste-grand-est.fr","tld":"fr"},"ip":{"addr":"109.234.164.164","port":0,"asn":50474,"as":"O2switch SAS","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"mail.paysagiste-grand-est.fr/o2s-cgi/security-challenge?a=verify-response","fqdn":"mail.paysagiste-grand-est.fr","domain":"paysagiste-grand-est.fr","tld":"fr"},"title":"mail.paysagiste-grand-est.fr/o2s-cgi/security-challenge?a=verify-response"},"submit":{"url":{"schema":"http","addr":"mail.paysagiste-grand-est.fr/o2s-cgi/security-challenge?a=verify-response","fqdn":"mail.paysagiste-grand-est.fr","domain":"paysagiste-grand-est.fr","tld":"fr"},"ip":{"addr":"109.234.164.164","port":0,"asn":50474,"as":"O2switch SAS","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-29T09:15:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"mail.paysagiste-grand-est.fr","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"mail.paysagiste-grand-est.fr","ip":{"addr":"109.234.164.164","port":443,"asn":50474,"as":"O2switch SAS","country":"France","country_code":"FR"},"domain_registered":"2025-10-18","domain_rank":0,"first_seen":"2025-10-25T09:15:23.24862Z","last_seen":"2025-10-25T09:15:23.24862Z","alert_count":1,"request_count":1,"received_data":339,"sent_data":541,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mail.paysagiste-grand-est.fr/o2s-cgi/security-challenge?a=verify-response","fqdn":"mail.paysagiste-grand-est.fr","domain":"paysagiste-grand-est.fr","tld":"fr"},"ip":{"addr":"109.234.164.164","port":443,"asn":50474,"as":"O2switch SAS","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-25T09:15:00.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"paysagiste-grand-est.fr","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 18 Oct 2025 08:52:00 GMT","end":"Fri, 16 Jan 2026 08:51:59 GMT"},"fingerprint":{"sha1":"75:2F:91:AA:A9:ED:68:0A:F8:EA:38:47:8A:30:B5:EC:F7:4E:BF:61","sha256":"AD:BE:B2:5F:5B:55:F9:97:51:71:79:C9:B9:92:5D:7F:40:87:6C:54:E6:2C:39:E9:14:73:BA:AE:9E:8D:54:4F"}}},"request":{"raw":"GET /o2s-cgi/security-challenge?a=verify-response HTTP/1.1\r\nHost: mail.paysagiste-grand-est.fr\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 25 Oct 2025 09:15:00 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nserver: o2switch-PowerBoost-v3\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":47,"size_decoded":0,"mime_type":"application/vnd.mozilla.json.view; charset=utf-8","magic":"JSON text data","md5":"db49e2e8b24fd39ce7eff530abcf3dd2","sha1":"0c188f5429b4735dfb50844ce5ff620997bfbb20","sha256":"269238039ed0de117d310536f5ed799755b5a58e2122e184b150305775b768b5","sha512":"1f627fd65b1f286ef441aa11782bfefaaff1a9976026af6889c6481c22e201aae827940b75e3d0cc7a71d70b0eaffa3c8eb38b70a4659c4a9dd815379f056528","ssdeep":"","tlshash":"b39004410311154d151c7344c7750d0f50530547731d5f50ccd7d11c5745051f14503c","first_seen":"2025-09-18T07:43:23.904188Z","last_seen":"2026-02-25T18:24:42.297417Z","times_seen":9,"resource_available":true,"data":null}},"time_used":546,"timings":{"blocked":256,"dns":75,"connect":36,"send":0,"wait":35,"receive":0,"ssl":142},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"mail.paysagiste-grand-est.fr","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}