{"report_id":"fb495e81-930c-4088-8340-4ea993cfe0e2","version":6,"status":"done","tags":[],"date":"2026-01-31T14:27:00Z","url":{"schema":"http","addr":"virodir.de","fqdn":"virodir.de","domain":"virodir.de","tld":"de"},"ip":{"addr":"81.169.145.152","port":0,"asn":6724,"as":"Strato AG","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"virodir.de/","fqdn":"virodir.de","domain":"virodir.de","tld":"de"},"title":"STRATO - Domain not available","dom":{"size":4659,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2335)","md5":"dc0d56c59fd58cda9512540e25fc2965","sha1":"5c274b08eb5539cb383330ed7583fbcae87e5f2d","sha256":"18a22a2e3341136fe243436a0935f35c0f6868f8a6365999584b94214c62ba64","sha512":"bfac3a8d2155c650f2b63248032442804b522e5510b2bb61983c5d3bf20d5e17f30713eee219ed829af893850047510ec26e448ba59c2034459cccecc2a895fd","ssdeep":"96:tM4Ei23t9M6bkWAZVuCrCPwgTwyjAN72FevJXlGEPq+bcqNM1xBBMNIT:WHtyDruCrCPTk2gvJXlGEPq+bcqe1xBN","tlshash":"01a175774391c7e594a489ec7e51a24a23185dc2f1a083d47b6f0872de8c0f2b97c78d","dom_hash":"domhash58d9a5d427cd4a8a3c63a5b3c196dea9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"virodir.de","fqdn":"virodir.de","domain":"virodir.de","tld":"de"},"ip":{"addr":"81.169.145.152","port":0,"asn":6724,"as":"Strato AG","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-07T14:27:00Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-01-31","alert":"Phishing Block","trigger":"virodir.de","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-31","alert":"Sinkholed","trigger":"virodir.de","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"virodir.de","ip":{"addr":"81.169.145.152","port":443,"asn":6724,"as":"Strato AG","country":"Germany","country_code":"DE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-31T13:29:49.384504Z","last_seen":"2026-01-31T13:29:49.384504Z","alert_count":4,"request_count":2,"received_data":9986,"sent_data":906,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2.4.66","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"UNIX","description":"Unix is a family of multitasking, multiuser computer operating systems.","website":"https://unix.org","common_platform_enumeration":"","icon":"UNIX.png","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"virodir.de/","fqdn":"virodir.de","domain":"virodir.de","tld":"de"},"ip":{"addr":"81.169.145.152","port":443,"asn":6724,"as":"Strato AG","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-31T14:26:39.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"virodir.de","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 30 Jan 2026 00:00:00 GMT","end":"Sat, 30 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"02:42:79:9F:53:79:2F:7E:D4:A3:8D:A8:D1:11:46:9A:D0:1C:2E:7D","sha256":"9C:5D:BD:8D:35:71:18:9F:53:45:34:1D:A7:A7:9E:49:11:2E:E5:F6:12:91:0A:4B:EE:4E:BC:82:27:08:A9:57"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: virodir.de\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 05 Jan 2024 09:31:31 GMT\r\netag: \"128a-60e2f8365c2c0\"\r\naccept-ranges: bytes\r\ncontent-length: 4746\r\ncontent-type: text/html\r\ndate: Sat, 31 Jan 2026 14:26:40 GMT\r\nserver: Apache/2.4.66 (Unix)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.66","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"UNIX","description":"Unix is a family of multitasking, multiuser computer operating systems.","website":"https://unix.org","common_platform_enumeration":"","icon":"UNIX.png","categories":["Operating systems"]}],"data":{"size":4746,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (2317)","md5":"ca45329f00252d30fbfa78fc960ae88e","sha1":"59d578b157788b36fe5aa521ba5ffbcb19db551e","sha256":"6b0528d8567a9ea0b6359c137e95fcb97379c69e4a9547dc1dca29a8f0ecafd5","sha512":"1cb1f20721f8cc0eefec83ae50aa1833dd4a0f45d8119170c149e1b9125f033a55dcaebc42f8994d940b3fa3ffc22c94849054b3836c7bb2f7ea328c85fc7e74","ssdeep":"96:jM4Ei23t936bkWAZVuCrCPwgTwyjAN72FOvJXkfEJW++bc0S1i1xYBMNI3:gHtZDruCrCPTk2YvJXkfEU++bc0ki1xa","tlshash":"b6a146778391c79694a089ecbe51a25a731869c2f1a083d47b6f1872df8c0f2b57c78d","first_seen":"2023-03-11T08:57:44Z","last_seen":"2026-06-06T17:59:50.251531Z","times_seen":1735,"resource_available":true,"data":null}},"time_used":710,"timings":{"blocked":337,"dns":29,"connect":36,"send":0,"wait":36,"receive":1,"ssl":269},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-01-31","alert":"Phishing Block","trigger":"virodir.de","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-31","alert":"Sinkholed","trigger":"virodir.de","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"virodir.de/favicon.ico","fqdn":"virodir.de","domain":"virodir.de","tld":"de"},"ip":{"addr":"81.169.145.152","port":443,"asn":6724,"as":"Strato AG","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://virodir.de/","date":"2026-01-31T14:26:40.331Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"virodir.de","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 30 Jan 2026 00:00:00 GMT","end":"Sat, 30 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"02:42:79:9F:53:79:2F:7E:D4:A3:8D:A8:D1:11:46:9A:D0:1C:2E:7D","sha256":"9C:5D:BD:8D:35:71:18:9F:53:45:34:1D:A7:A7:9E:49:11:2E:E5:F6:12:91:0A:4B:EE:4E:BC:82:27:08:A9:57"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: virodir.de\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://virodir.de/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Fri, 05 Jan 2024 09:31:31 GMT\r\netag: \"128a-60e2f8365c2c0\"\r\naccept-ranges: bytes\r\ncontent-length: 4746\r\ncontent-type: text/html\r\ndate: Sat, 31 Jan 2026 14:26:40 GMT\r\nserver: Apache/2.4.66 (Unix)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.66","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"UNIX","description":"Unix is a family of multitasking, multiuser computer operating systems.","website":"https://unix.org","common_platform_enumeration":"","icon":"UNIX.png","categories":["Operating systems"]}],"data":{"size":4746,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (2317)","md5":"ca45329f00252d30fbfa78fc960ae88e","sha1":"59d578b157788b36fe5aa521ba5ffbcb19db551e","sha256":"6b0528d8567a9ea0b6359c137e95fcb97379c69e4a9547dc1dca29a8f0ecafd5","sha512":"1cb1f20721f8cc0eefec83ae50aa1833dd4a0f45d8119170c149e1b9125f033a55dcaebc42f8994d940b3fa3ffc22c94849054b3836c7bb2f7ea328c85fc7e74","ssdeep":"96:jM4Ei23t936bkWAZVuCrCPwgTwyjAN72FOvJXkfEJW++bc0S1i1xYBMNI3:gHtZDruCrCPTk2YvJXkfEU++bc0ki1xa","tlshash":"b6a146778391c79694a089ecbe51a25a731869c2f1a083d47b6f1872df8c0f2b57c78d","first_seen":"2023-03-11T08:57:44Z","last_seen":"2026-06-06T17:59:50.251531Z","times_seen":1735,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-31","alert":"Sinkholed","trigger":"virodir.de","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-01-31","alert":"Phishing Block","trigger":"virodir.de","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}