{"report_id":"e1a0bf5c-ca02-4059-bf25-b0e3311cc9ea","version":6,"status":"done","tags":["dyndns"],"date":"2026-03-23T15:26:15Z","url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":0,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"title":"AMSTEL REGISTRATION","dom":{"size":7161,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"be29805ad62d79e56d2bce562c7bd272","sha1":"bad4cf5fcd278396bba1d0e9822f6b4572014300","sha256":"861a0de3e60b6b8d2475609726d15875e1ee51d2568e09ff3342276457b1e8ff","sha512":"30bcdebd36f4eaa2cdf1bfc674364dd574173e27c93f713658eed22321e3f7575ab76a8316c28c95269ab2ed0b5a3a94900b91c4790f822dc2b74d8c8824eba6","ssdeep":"192:EZmlpDzibqVnMnNAZ9KIey5wN3DrBz+gLNL2iWAyNf3tfimj:xzidNAZ9KLy4zrBikqisf3tfik","tlshash":"6ee1657b62e20430cdbfa5e23666978d34208003a906d5487fac4762cfe5ed7857ab9c","dom_hash":"domhash44bb30c9c9aca2bce42a87e9d5a14c1b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":0,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-27T15:26:15Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]},"summary":[{"fqdn":"cd.dvrcam.info","ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"domain_registered":"2009-09-01","domain_rank":0,"first_seen":"2026-03-23T15:26:15.328307Z","last_seen":"2026-03-23T15:26:15.328307Z","alert_count":3,"request_count":3,"received_data":24747,"sent_data":1445,"comment":"","tags":null,"fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"c57c3dd96684c188cfe0b6038fa39fd3","sha1":"c22d4c92d5c69ac723d0cfc9733327f7612e0ef0","sha256":"982d515cbcc5891f6273429a7da640002ae1a6a03380a0ca5f8e4bac89865ac5","sha512":"1b2c4a7d836df4112a3819a9e6bd5b4b4179b7a1aa99ba24dd7bfd8680c1606562df299c83336ba804ace3cf21cba07758df82fc0ecce2ef726bc1e87f4f4441","ssdeep":"","tlshash":"15519cbb22a308304cef3aa737675388393050476d05d5493b6c47529fb9ee794babc9","size":2754,"data":"","first_seen":"2026-03-23T15:26:17.286978Z","last_seen":"2026-03-23T16:06:48.359672Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"b0777b089153c81b158dd5d5ee5c5546","sha1":"1981938295e3514a40c52a73b313853ed90efa50","sha256":"1f4ab3511555170dc7b0bd3c2e6ac28542b2ed51ecd0836251fdd63f07460ef5","sha512":"5d5ea29e49bbde68af237728c8b6637bc8d80f041f66d86586e1585becb64ab4e1646e3b7d3204052b6b8da9aa22b88ce3cfd5fb5d12681fdb9a33598d059ede","ssdeep":"","tlshash":"d5f0ec1e32b364500997d3a2139ad548397615173185c5543b5e43518fa0f6032f67f5","size":504,"data":"","first_seen":"2026-03-23T15:26:17.288045Z","last_seen":"2026-03-23T16:06:48.360545Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"11e60c5bd34a6908ffb3f9c2d5a43942","sha1":"054042ce210f4790b95ba655155754cbe58bc665","sha256":"16bbb0deb700456fd95b063be482b3d643d46019cafbed40f68b6c89b3430f2d","sha512":"fc3c88a3eb3786e287f2b05310c0fc95e591c58983f7e155ec7dcacde6fc93d12ebe4c6952866f6fa9cca3d525c8f8f0c3b9de73de0060af09a34fad1d03e3d7","ssdeep":"","tlshash":"068000ca8000302a000028888822a2220b332c80382a80c0c0282282a082a20000cb08","size":28,"data":"","first_seen":"2026-03-23T15:26:17.289144Z","last_seen":"2026-03-23T16:06:48.361429Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"b5b6ad37b577478f70a3f1473122b4ae","sha1":"eef2305ebf733a227b769d120583fada41d69a94","sha256":"9246f3eed991419c72076374d20c09e1576df9fe0cd42e0a3fc1266a492c48ac","sha512":"b4ad28ace888d1180f4d9b9c125111993834790fe6caca415fc7043b9dfe6fa9f58a6ce8106be0277bc997288e1e8cc8d591097d430762348cc9751222e5b20d","ssdeep":"","tlshash":"2ff0e97b32d319308def7a6b27259348353090031c0191057d7c45528f78e62c07a799","size":475,"data":"","first_seen":"2026-03-23T15:26:17.290284Z","last_seen":"2026-03-23T16:06:48.363385Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-23T15:24:56.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wtfilm.biz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 13:38:02 GMT","end":"Fri, 19 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"12:1D:85:3F:65:B3:62:7B:8B:8B:6B:AF:66:94:3F:9D:DA:6D:B0:29","sha256":"D6:A6:64:BF:D7:E6:36:FE:B9:DB:7E:9E:B6:B0:7D:47:5F:96:5B:11:A4:D6:74:D0:FE:7B:36:3D:87:A4:A9:F4"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cd.dvrcam.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 23 Mar 2026 15:24:56 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 2089\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: 4c623bda0bb5acf7eb0b18c7aad130aa\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=06li1cjje1utkq3p20gt8t16hs; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\";ma=86400\r\nx-request-id: 4c623bda0bb5acf7eb0b18c7aad130aa\r\nedge-cache-engine-hit: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":7149,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"aa4e4b2db2f6681690b5c56e1fd0f79e","sha1":"222275d66ee3897ecb38540879a1ed07744327eb","sha256":"55284ef11060b4e2428dac7915b407dc0df29d09fb4324891eb2477449f7d2c6","sha512":"6d155a241a8b9e931b2247e2b70e7807ecf94df75f1523a3aaecea6099042465e683d8b9a22cb6adaefefa43851d13b5dabed3b75cb65e004d0653f59dce9d78","ssdeep":"192:AZmlpDzilqVnMnNAZ9KIey5wN3DrBz+gLNL2iWAyNf3tfiy:lzifNAZ9KLy4zrBikqisf3tfiy","tlshash":"8ce1767b62e204308dbfa5e23765978d34208003a906d5487fac8762cfe5ed7957a79c","first_seen":"2026-03-23T15:26:17.283987Z","last_seen":"2026-03-23T15:26:17.283987Z","times_seen":1,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":117,"dns":40,"connect":34,"send":0,"wait":63,"receive":0,"ssl":44},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"cd.dvrcam.info/im/logo.png","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","date":"2026-03-23T15:24:56.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wtfilm.biz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 13:38:02 GMT","end":"Fri, 19 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"12:1D:85:3F:65:B3:62:7B:8B:8B:6B:AF:66:94:3F:9D:DA:6D:B0:29","sha256":"D6:A6:64:BF:D7:E6:36:FE:B9:DB:7E:9E:B6:B0:7D:47:5F:96:5B:11:A4:D6:74:D0:FE:7B:36:3D:87:A4:A9:F4"}}},"request":{"raw":"GET /im/logo.png HTTP/1.1\r\nHost: cd.dvrcam.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cd.dvrcam.info/\r\nCookie: PHPSESSID=06li1cjje1utkq3p20gt8t16hs\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 23 Mar 2026 15:24:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 15940\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: ea646cba3255b706129fb3adba56e15e\r\nlast-modified: Sat, 21 Mar 2026 15:54:04 GMT\r\naccept-ranges: bytes\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\nalt-svc: h3=\":443\";ma=86400\r\nx-request-id: ea646cba3255b706129fb3adba56e15e\r\nedge-cache-engine-hit: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":15940,"size_decoded":0,"mime_type":"image/png","magic":"GIF image data, version 89a, 350 x 350","md5":"8216720b2e3fb3b753e1ac06351880e4","sha1":"c1d53294548dffdee331bcf5b4cd9a32b06d7fcf","sha256":"8c9b86d7c8d08858b352b0e8e77558c29af66c500b7efd01a4b012e75f6869b8","sha512":"9325e4b72bc2905b065cb2a50d14cd4e20a1e0c2757f3c38f503b470739c0194a32614ec193afd8122d22756752c09918d7f628b74e3487516ef44941ece115e","ssdeep":"384:L0oVRpvINDTuLs7ekvx751q0LBo7gyBku6fjf8d8X:oOIND80x75TBo0s6rA+","tlshash":"7262c00b5afdb95164912b73ff8421ad20903e208c229701a2d638d87a7363c6bc67b3","first_seen":"2026-03-23T15:26:17.285231Z","last_seen":"2026-03-23T16:06:48.357902Z","times_seen":2,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"cd.dvrcam.info/favicon.ico","fqdn":"cd.dvrcam.info","domain":"cd.dvrcam.info","tld":"dvrcam.info"},"ip":{"addr":"91.234.194.20","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cd.dvrcam.info/#/pages/login/register?inviteCode=25501176*","date":"2026-03-23T15:24:57.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.wtfilm.biz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 13:38:02 GMT","end":"Fri, 19 Jun 2026 13:38:01 GMT"},"fingerprint":{"sha1":"12:1D:85:3F:65:B3:62:7B:8B:8B:6B:AF:66:94:3F:9D:DA:6D:B0:29","sha256":"D6:A6:64:BF:D7:E6:36:FE:B9:DB:7E:9E:B6:B0:7D:47:5F:96:5B:11:A4:D6:74:D0:FE:7B:36:3D:87:A4:A9:F4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cd.dvrcam.info\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cd.dvrcam.info/\r\nCookie: PHPSESSID=06li1cjje1utkq3p20gt8t16hs\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Mon, 23 Mar 2026 15:24:57 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-length: 355\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: 635acd9d38a0f32fdb4234a1bb78162e\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-13T18:31:16.385983Z","times_seen":40133,"resource_available":true,"data":null}},"time_used":52,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}}]}