{"report_id":"dcbd45b4-0254-4c6b-8574-82c81ee54ff7","version":6,"status":"done","tags":[],"date":"2025-07-20T13:30:13Z","url":{"schema":"http","addr":"topaz66t.sbs","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":0,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"topaz66t.sbs/cgi-sys/suspendedpage.cgi","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"title":"Website Suspended - AnymHost Web Hosting"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-08-24T13:30:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"topaz66t.sbs","ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2025-05-21","domain_rank":0,"first_seen":"2025-07-20T13:30:13.316233Z","last_seen":"2025-07-20T13:30:13.316234Z","alert_count":4,"request_count":4,"received_data":8504,"sent_data":1913,"comment":"","tags":null,"fingerprints":null},{"fqdn":"i.ibb.co","ip":{"addr":"45.43.142.6","port":443,"asn":215751,"as":"Mikhail Fedorov","country":"Israel","country_code":"IL"},"domain_registered":"2010-07-20","domain_rank":13485,"first_seen":"2018-11-25T10:13:48Z","last_seen":"2025-07-13T14:09:19.215894Z","alert_count":0,"request_count":1,"received_data":1174,"sent_data":443,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-07-16T15:24:25.336348Z","alert_count":0,"request_count":1,"received_data":156891,"sent_data":489,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-07-20","alert":"Sinkholed","trigger":"topaz66t.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"topaz66t.sbs/cgi-sys/suspendedpage.cgi","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"6bd43cf0ae158526c6ab93dc3be79f28","sha1":"15c289e342bd3fdf5b1e95f7abf25a2bc78bf357","sha256":"7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38","sha512":"5190eb107c27f5d655eab378cd468228aa031d088f59082f257f41d464a29fbdb23594043afe89a3f9b63ce86d91efad6c2901c816d85196389293a6a5a28521","ssdeep":"","tlshash":"df90040100513554711530d00134c3dd157df075dc4dd335754f57004040405c53c401","size":40,"data":"","first_seen":"2023-03-07T01:02:07Z","last_seen":"2026-04-15T21:39:28.483596Z","times_seen":20872,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"312351bff07989769097660a56395065","sha1":"004be89dd9e070ecb080b9b759e5be29ec24881b","sha256":"b2b2f104d32c638903e151a9b20d6e27b41d8c0c84cf8458738f83ca2f1dd744","sha512":"454935a0b9fe288a70896e9e0548537ed09c564e47d771b91202f70ddc94946fa6b209e205034983ebe3160633bf5401df01cdfc54b7f98c4bfbd5845a89124f","ssdeep":"","tlshash":"1f3000000000000000cc00000000000000000000000000000000000000000000000c00","size":4,"data":"","first_seen":"2023-03-13T00:05:53Z","last_seen":"2026-04-13T10:21:22.067852Z","times_seen":32215,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"topaz66t.sbs/","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-07-20T13:29:50.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.topaz66t.sbs","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 May 2025 13:41:51 GMT","end":"Tue, 19 Aug 2025 13:41:50 GMT"},"fingerprint":{"sha1":"61:EC:BD:A1:FC:C7:AC:EA:D0:28:9A:58:C3:85:D7:8D:73:66:64:67","sha256":"31:4E:EE:96:47:BA:2F:67:6F:4B:33:0C:60:28:CE:0C:86:F0:53:F3:AD:FF:C7:31:23:9B:54:B6:8B:12:33:DB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: topaz66t.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html\r\ncontent-length: 771\r\ndate: Sun, 20 Jul 2025 13:29:50 GMT\r\ncache-control: no-cache, no-store, must-revalidate, max-age=0\r\nlocation: https://topaz66t.sbs/cgi-sys/suspendedpage.cgi\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":1853,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-15T21:38:41.569918Z","times_seen":13799339,"resource_available":true,"data":null}},"time_used":175,"timings":{"blocked":75,"dns":12,"connect":26,"send":0,"wait":26,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-07-20","alert":"Sinkholed","trigger":"topaz66t.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"topaz66t.sbs/cgi-sys/suspendedpage.cgi","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"","requested_by":"","date":"2025-07-20T13:29:50.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.topaz66t.sbs","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 May 2025 13:41:51 GMT","end":"Tue, 19 Aug 2025 13:41:50 GMT"},"fingerprint":{"sha1":"61:EC:BD:A1:FC:C7:AC:EA:D0:28:9A:58:C3:85:D7:8D:73:66:64:67","sha256":"31:4E:EE:96:47:BA:2F:67:6F:4B:33:0C:60:28:CE:0C:86:F0:53:F3:AD:FF:C7:31:23:9B:54:B6:8B:12:33:DB"}}},"request":{"raw":"GET /cgi-sys/suspendedpage.cgi HTTP/1.1\r\nHost: topaz66t.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 20 Jul 2025 13:29:50 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1853,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"4ce8df8d44f192e25c334b5979fc356b","sha1":"9fa23e3946ac37f6bc6e0c73a167507a9b5386dc","sha256":"e07b4da94e4ad7f02fd5f8ccef1fc5983c57e01fc021c821387397ad979c3a8d","sha512":"a7406bb5be116c63bfa615bb9bf6ad33fed4eb16b5874fe4189a95f3720db6140dde45642995b931126c9e68f601669159f6611be0b0ad031a1cf7349cd3c5a7","ssdeep":"","tlshash":"fe31dae748c4292a017346a48ae8a258fe569253d74b9950729d7bef0ffae05ca53044","first_seen":"2023-11-13T16:32:42Z","last_seen":"2026-01-05T01:00:12.770901Z","times_seen":14,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-07-20","alert":"Sinkholed","trigger":"topaz66t.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"i.ibb.co/QdkmXG2/1678376366512-1.webp","fqdn":"i.ibb.co","domain":"ibb.co","tld":"co"},"ip":{"addr":"45.43.142.6","port":443,"asn":215751,"as":"Mikhail Fedorov","country":"Israel","country_code":"IL"},"is_navigation_request":false,"resource_type":"","requested_by":"https://topaz66t.sbs/cgi-sys/suspendedpage.cgi","date":"2025-07-20T13:29:51.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ibb.co","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Jun 2025 07:18:01 GMT","end":"Wed, 17 Sep 2025 07:18:00 GMT"},"fingerprint":{"sha1":"54:9B:89:F2:DD:E2:46:5A:E1:68:2B:B3:06:E5:D6:77:0E:E6:62:A5","sha256":"2E:66:18:C6:F9:73:F0:F9:32:D3:D7:77:88:0C:73:C5:B2:E3:87:3E:A1:6B:91:80:7F:D6:7F:D1:07:84:1C:ED"}}},"request":{"raw":"GET /QdkmXG2/1678376366512-1.webp HTTP/1.1\r\nHost: i.ibb.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://topaz66t.sbs/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sun, 20 Jul 2025 13:29:51 GMT\r\ncontent-type: image/png\r\ncontent-length: 1031\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":1031,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 4-bit colormap, non-interlaced","md5":"7325e2012a6cf941a6ea14f0061ff764","sha1":"0d2ba63e280b979a98bc431bec8a7af985578769","sha256":"63e3696c5e5e8b037e28e8fbef871184b0d1d60a7314c965b1426d9cce84dd69","sha512":"602ab2e43f39d22edc6368f8c82cac6f7ffd2120f5eecaf7b129381044452c3c29ab88befada1ca789604ffaa180ac5f6776f4132b4aa648baf962add500d7b6","ssdeep":"","tlshash":"bb11d812ade29148cbdba42513e363a00e4419be1411a221e614a72e5bd8284764f319","first_seen":"2023-05-01T10:28:56Z","last_seen":"2026-04-15T16:52:55.276237Z","times_seen":2688,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":73,"dns":1,"connect":23,"send":0,"wait":22,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@4.3.1/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.175.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"https://topaz66t.sbs/cgi-sys/suspendedpage.cgi","date":"2025-07-20T13:29:51.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/bootstrap@4.3.1/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://topaz66t.sbs\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://topaz66t.sbs/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 20 Jul 2025 13:29:51 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 25648\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 4.3.1\r\nx-jsd-version-type: version\r\netag: W/\"2606e-bhA1SChFSJj9qA9V897LNH/Z7SE\"\r\ncontent-encoding: br\r\nx-served-by: cache-fra-eddf8230028-FRA, cache-lga21923-LGA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 1329900\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=3q%2FnP7z95zL8%2FzevhpdFxkWesdiFw8Jv2uYN0FDTdnfW3T8logdTpdMd3xVIFv7tA3jxdsI63pCzycjXb1IRn1Vze7Y43FrnQikN8EikYLaUDXvR%2BhX4mYpZ9OtDXAkj0zU%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 9622cf4e8d1db4ee-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":155758,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65324)","md5":"a15c2ac3234aa8f6064ef9c1f7383c37","sha1":"6e10354828454898fda80f55f3decb347fd9ed21","sha256":"60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36","sha512":"b435cf71a9ae66c59677a3ac285c87ea702a87f32367fe5893cf13e68f9a31fca0a8d14f6a7d692f23c5027751ce63961ca4fe8d20f35a926ff24ae3eb1d4b30","ssdeep":"1536:b/xImT+IcCQYYDnDEBi83NcuSEk/ekX/uKiq3SYiLENM6HN26F:b/Riz7G3q3SYiLENM6HN26F","tlshash":"68e386a6f5a0312de4a7c61964d0bafe156f8145d7220bfbf8273b7447892c70a63e4c","first_seen":"2023-04-05T08:00:04Z","last_seen":"2026-04-15T21:35:52.600138Z","times_seen":37320,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":15,"dns":7,"connect":1,"send":0,"wait":16,"receive":6,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"topaz66t.sbs/favicon.ico","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"","requested_by":"https://topaz66t.sbs/cgi-sys/suspendedpage.cgi","date":"2025-07-20T13:29:51.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.topaz66t.sbs","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 May 2025 13:41:51 GMT","end":"Tue, 19 Aug 2025 13:41:50 GMT"},"fingerprint":{"sha1":"61:EC:BD:A1:FC:C7:AC:EA:D0:28:9A:58:C3:85:D7:8D:73:66:64:67","sha256":"31:4E:EE:96:47:BA:2F:67:6F:4B:33:0C:60:28:CE:0C:86:F0:53:F3:AD:FF:C7:31:23:9B:54:B6:8B:12:33:DB"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: topaz66t.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://topaz66t.sbs/cgi-sys/suspendedpage.cgi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html\r\ncontent-length: 771\r\ndate: Sun, 20 Jul 2025 13:29:51 GMT\r\ncache-control: no-cache, no-store, must-revalidate, max-age=0\r\nlocation: https://topaz66t.sbs/cgi-sys/suspendedpage.cgi\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":1853,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-15T21:38:41.569918Z","times_seen":13799339,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-07-20","alert":"Sinkholed","trigger":"topaz66t.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"topaz66t.sbs/cgi-sys/suspendedpage.cgi","fqdn":"topaz66t.sbs","domain":"topaz66t.sbs","tld":"sbs"},"ip":{"addr":"142.132.150.169","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"","requested_by":"https://topaz66t.sbs/cgi-sys/suspendedpage.cgi","date":"2025-07-20T13:29:51.378Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.topaz66t.sbs","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Wed, 21 May 2025 13:41:51 GMT","end":"Tue, 19 Aug 2025 13:41:50 GMT"},"fingerprint":{"sha1":"61:EC:BD:A1:FC:C7:AC:EA:D0:28:9A:58:C3:85:D7:8D:73:66:64:67","sha256":"31:4E:EE:96:47:BA:2F:67:6F:4B:33:0C:60:28:CE:0C:86:F0:53:F3:AD:FF:C7:31:23:9B:54:B6:8B:12:33:DB"}}},"request":{"raw":"GET /cgi-sys/suspendedpage.cgi HTTP/1.1\r\nHost: topaz66t.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://topaz66t.sbs/cgi-sys/suspendedpage.cgi\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/html\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 20 Jul 2025 13:29:51 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1853,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"4ce8df8d44f192e25c334b5979fc356b","sha1":"9fa23e3946ac37f6bc6e0c73a167507a9b5386dc","sha256":"e07b4da94e4ad7f02fd5f8ccef1fc5983c57e01fc021c821387397ad979c3a8d","sha512":"a7406bb5be116c63bfa615bb9bf6ad33fed4eb16b5874fe4189a95f3720db6140dde45642995b931126c9e68f601669159f6611be0b0ad031a1cf7349cd3c5a7","ssdeep":"","tlshash":"fe31dae748c4292a017346a48ae8a258fe569253d74b9950729d7bef0ffae05ca53044","first_seen":"2023-11-13T16:32:42Z","last_seen":"2026-01-05T01:00:12.770901Z","times_seen":14,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2025-07-20","alert":"Sinkholed","trigger":"topaz66t.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}