{"report_id":"a84be660-4fa6-4458-89fb-c482d54dbcfd","version":0,"status":"done","tags":[],"date":"2026-06-17T14:36:34Z","url":{"schema":"http","addr":"bibapor.com","fqdn":"bibapor.com","domain":"bibapor.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"final":{"url":{"schema":"https","addr":"bibapor.com/","fqdn":"bibapor.com","domain":"bibapor.com","tld":"com"},"title":"抱歉，站点已暂停","dom":{"size":3443,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2970)","md5":"cbbb9c7330ed57eea13adb8a1fb0759f","sha1":"4755b7c37eea092a6c6c9e80a3685b993dec00c3","sha256":"b9e6cdd4ae9153ae6723dedef29d862f2836d2160ad4a47ffb3024c7fc9119ad","sha512":"e7e1a01d6ff089dbdd89d39b6d082131577a28bf715fbdcf0ed0d12cec64a99732c759f931467c61890923ace00927d01606d461b611080810af8e87e5ffcfa7","ssdeep":"","tlshash":"f3612a3f69d01e5b1a2a00dede3a1e94ae1d4866828fc8c1fa3452a3a2b54f365d6340","dom_hash":"domhash6f3c374c4f5147a0e6a5c7d2eecf2f64","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bibapor.com","fqdn":"bibapor.com","domain":"bibapor.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":0,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-22T14:36:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"bibapor.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"bibapor.com","ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"domain_registered":"2026-03-31","domain_rank":0,"first_seen":"2026-06-15T11:15:15.248573Z","last_seen":"2026-06-15T11:15:15.248573Z","alert_count":2,"request_count":2,"received_data":7804,"sent_data":978,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bibapor.com/","fqdn":"bibapor.com","domain":"bibapor.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T14:36:09.982Z","timestamp":1781706969982,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bibapor.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:44:09 GMT","end":"Fri, 28 Aug 2026 08:44:08 GMT"},"fingerprint":{"sha1":"CF:88:E6:AC:4A:56:2D:82:AB:DE:8A:E7:C4:87:73:4C:43:27:2D:62","sha256":"C2:FF:5E:C1:96:ED:DE:F7:B4:C1:A6:5A:BA:FD:A1:57:46:1A:E2:DD:03:CF:7D:E8:91:04:4A:59:36:46:DD:41"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bibapor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 14:36:10 GMT\r\ncontent-type: text/html\r\nlast-modified: Thu, 15 Jan 2026 15:55:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69690de3-d84\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3460,"size_decoded":3174,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2970)","md5":"9c93888e53714f2a19d397d299384a64","sha1":"300c5cba200dbf529287efbda45e2c5ff74ca1c7","sha256":"cd65abf9fc3de8541812f93ea03fa9547602c8b30b322365e118fdebdab75690","sha512":"4b8c1425a332cf977883ed259d9d3d24fc81ab1b6bc14523a715a5ac498d9bb899088b00b89ecc73b324121d2c8787b59d3ce9d69eb6053326d5e85558fb9ebc","ssdeep":"","tlshash":"44612c3f29d01e5b162a00ddde3a1e94be1e1866828fc8c1fa3592a3e2f54e365d6340","first_seen":"2023-04-12T20:56:18Z","last_seen":"2026-06-20T06:34:55.03409Z","times_seen":802,"resource_available":true,"data":null}},"time_used":1178,"timings":{"blocked":-1,"dns":71,"connect":268,"send":0,"wait":286,"receive":0,"ssl":553},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"bibapor.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bibapor.com/favicon.ico","fqdn":"bibapor.com","domain":"bibapor.com","tld":"com"},"ip":{"addr":"134.122.200.175","port":443,"asn":152194,"as":"CTG Server Limited","country":"Japan","country_code":"JP"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bibapor.com/","date":"2026-06-17T14:36:11.415Z","timestamp":1781706971415,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bibapor.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 May 2026 08:44:09 GMT","end":"Fri, 28 Aug 2026 08:44:08 GMT"},"fingerprint":{"sha1":"CF:88:E6:AC:4A:56:2D:82:AB:DE:8A:E7:C4:87:73:4C:43:27:2D:62","sha256":"C2:FF:5E:C1:96:ED:DE:F7:B4:C1:A6:5A:BA:FD:A1:57:46:1A:E2:DD:03:CF:7D:E8:91:04:4A:59:36:46:DD:41"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bibapor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://bibapor.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Wed, 17 Jun 2026 14:36:11 GMT\r\ncontent-type: text/html\r\nlast-modified: Thu, 15 Jan 2026 15:55:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69690de3-d84\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3460,"size_decoded":3174,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2970)","md5":"9c93888e53714f2a19d397d299384a64","sha1":"300c5cba200dbf529287efbda45e2c5ff74ca1c7","sha256":"cd65abf9fc3de8541812f93ea03fa9547602c8b30b322365e118fdebdab75690","sha512":"4b8c1425a332cf977883ed259d9d3d24fc81ab1b6bc14523a715a5ac498d9bb899088b00b89ecc73b324121d2c8787b59d3ce9d69eb6053326d5e85558fb9ebc","ssdeep":"","tlshash":"44612c3f29d01e5b162a00ddde3a1e94be1e1866828fc8c1fa3592a3e2f54e365d6340","first_seen":"2023-04-12T20:56:18Z","last_seen":"2026-06-20T06:34:55.03409Z","times_seen":802,"resource_available":true,"data":null}},"time_used":286,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"bibapor.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}