{"report_id":"5156c3bb-71b6-45f2-bd2b-fabf414e1a34","version":6,"status":"done","tags":[],"date":"2026-04-14T20:57:43Z","url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"172.67.216.3","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"title":"Fintech Learn","dom":{"size":3415,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"ff6d775fc8af932e982c1b6e2777c06f","sha1":"182f4c35c6ee069732f0d68d251e4e8d15c1ccc7","sha256":"0cff6fbc17e576970ed8d5562c5e0b8b8909fb976bf2faf2fbd40761a915042e","sha512":"312178c5e180dc93b5d710389aab0bb161d78ebb0960950eb60583014213d7c91d855cc941b51052e651da994ac673c680d491ab06dfa746f2854c6545eaba21","ssdeep":"","tlshash":"37610f7664f02526c08391e27b95ab4b6fa1d643da0e5d0075fc47c90fd2e87ca2b29a","dom_hash":"domhash085307f1cd4c222e8bd4ab06862a5601","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"172.67.216.3","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-19T20:57:43Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ledgerorbitsolutions1.sbs","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-15","domain_rank":0,"first_seen":"2026-04-14T20:57:44.00977Z","last_seen":"2026-04-14T20:57:44.00977Z","alert_count":15,"request_count":5,"received_data":10891,"sent_data":2531,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-15T01:56:42.724662Z","times_seen":302956,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledgerorbitsolutions1.sbs/","date":"2026-04-14T20:57:23.301Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledgerorbitsolutions1.sbs","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 11:18:57 GMT","end":"Sun, 05 Jul 2026 11:18:56 GMT"},"fingerprint":{"sha1":"25:88:14:04:B1:D5:79:F3:68:0A:62:7D:5D:F3:8A:BD:4D:93:C8:4C","sha256":"C6:9A:AC:0F:1A:1C:11:32:43:F9:DA:00:1E:13:6B:EF:88:A0:5F:F0:3B:25:30:3F:86:77:39:38:65:B7:63:9A"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: ledgerorbitsolutions1.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledgerorbitsolutions1.sbs/\r\nCookie: PHPSESSID=3eit55uee19kkovob5tm346iua\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 14 Apr 2026 20:57:23 GMT\r\ncontent-type: application/javascript\r\nexpires: Tue, 14 Apr 2026 21:45:23 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1M9EX139SY9ca1roX0PBo75ZilSOaeemRyXr8XcBEShL8hF6lUAZ1f9YErs3AtSBE0ASx1zHPfn0xsZnf2VpKnmzCWTDFVB3agq0dm9qZwp%2B6wSLCeuxSRN6mHq4gOvD2NXXXbbD5%2B1xOqvV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9ec59f608a8935a6-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-15T01:56:42.724662Z","times_seen":302956,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/favicon.ico","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledgerorbitsolutions1.sbs/","date":"2026-04-14T20:57:23.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledgerorbitsolutions1.sbs","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 11:18:57 GMT","end":"Sun, 05 Jul 2026 11:18:56 GMT"},"fingerprint":{"sha1":"25:88:14:04:B1:D5:79:F3:68:0A:62:7D:5D:F3:8A:BD:4D:93:C8:4C","sha256":"C6:9A:AC:0F:1A:1C:11:32:43:F9:DA:00:1E:13:6B:EF:88:A0:5F:F0:3B:25:30:3F:86:77:39:38:65:B7:63:9A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ledgerorbitsolutions1.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledgerorbitsolutions1.sbs/\r\nCookie: PHPSESSID=3eit55uee19kkovob5tm346iua\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Tue, 14 Apr 2026 20:57:23 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OKhUe0n7afo2zgxBeJZSQGnU51yk%2BjTyl6Cx6665ZmOKx9amhLshK3TwGQ4JbaPVRPe4Y%2F%2BG62huqHZUlHVW065ANDSSWkYXbJLYYDuPf2dYuaNzc5KmUdzbD9UjC2cqdrpvuf%2BYncDoi5zV\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9ec59f617c6935a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"37d5c3a24983196361e6ce9b1a499464","sha1":"2dd5878df894f3c648e42408879e9a61c112d1b3","sha256":"766c1d6bcb81d3e983fb7adbc19c616d7fc01dafb7893738edc242e2adc59c07","sha512":"cc140d1f61a01ba5f282d682dfeb19229426c7164b147a3031d3b5544c2d7213ce19b075a81d5e00750bdac7b1d9232b8b971e026d838ccae9466523338b09a9","ssdeep":"","tlshash":"eac08c6e2513bd4cc663217432c36490c08b93a7a4ea42228440805331cb2aa8ac7396","first_seen":"2023-11-07T17:46:00Z","last_seen":"2026-04-14T21:25:47.116042Z","times_seen":20256,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-14T20:57:22.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledgerorbitsolutions1.sbs","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 11:18:57 GMT","end":"Sun, 05 Jul 2026 11:18:56 GMT"},"fingerprint":{"sha1":"25:88:14:04:B1:D5:79:F3:68:0A:62:7D:5D:F3:8A:BD:4D:93:C8:4C","sha256":"C6:9A:AC:0F:1A:1C:11:32:43:F9:DA:00:1E:13:6B:EF:88:A0:5F:F0:3B:25:30:3F:86:77:39:38:65:B7:63:9A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ledgerorbitsolutions1.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 14 Apr 2026 20:57:23 GMT\r\ncontent-type: text/html;charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nset-cookie: PHPSESSID=3eit55uee19kkovob5tm346iua; expires=Tue, 21 Apr 2026 20:57:22 GMT; Max-Age=604800; path=/; HttpOnly; SameSite=Lax\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fZDaddNdUBOVZgIP%2FbtJEdpFRyP8%2F%2BHcBmWyfrDdOwjPHF1SFd2CQrBTu5gDXtNtFqBFTrbkyvxjn0OxdYgvfSxgXdtT096I11diL8ma0ellGSBRJXWZYfADTJLB1LemK3uUoJnVfoiYT5xp\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9ec59f5c5a337127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3711,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"PHP script, Unicode text, UTF-8 text","md5":"fb62bbb0e59af64932e5520ec68e5dbb","sha1":"5d219b36cb9fef7453bf7ca1b01ec8239ee089b5","sha256":"82910f878b18a67dbbb510466fcaf902d6a8de04b0f59be9b1697093a1d8e1fe","sha512":"4c17525e3978f5e5b3203274bc4ab265c542cf02b4d633b9d488ac0b222971c83fff9d9d60ec573ee19450bcb917702356c4a4bb83eed9668ca1dd07a1423fae","ssdeep":"","tlshash":"f471f07664f01527808390e27b91e74b6fa1d643da0a5d0075fc56c94fd2e87ca2b28a","first_seen":"2026-04-14T20:57:47.036349Z","last_seen":"2026-04-14T20:57:47.036349Z","times_seen":1,"resource_available":true,"data":null}},"time_used":702,"timings":{"blocked":91,"dns":79,"connect":1,"send":0,"wait":515,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/style.css","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledgerorbitsolutions1.sbs/","date":"2026-04-14T20:57:23.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledgerorbitsolutions1.sbs","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 11:18:57 GMT","end":"Sun, 05 Jul 2026 11:18:56 GMT"},"fingerprint":{"sha1":"25:88:14:04:B1:D5:79:F3:68:0A:62:7D:5D:F3:8A:BD:4D:93:C8:4C","sha256":"C6:9A:AC:0F:1A:1C:11:32:43:F9:DA:00:1E:13:6B:EF:88:A0:5F:F0:3B:25:30:3F:86:77:39:38:65:B7:63:9A"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: ledgerorbitsolutions1.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledgerorbitsolutions1.sbs/\r\nCookie: PHPSESSID=3eit55uee19kkovob5tm346iua\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 14 Apr 2026 20:57:23 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Thu, 18 Sep 2025 04:15:40 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AwMjpcdMoFYvxa7GwwxJmHIBEVGrk96MfUmXJQXCh0Ebjlzx6WhjECgYHC3AOGoUVgB11H1XjrNHKY6wuWvG3unZvUaC%2Bd%2B9lNt%2FfWU1AGHPQVPO%2BD4Bn7y5DTR9P5%2B%2F4IxxBE%2B0%2FApdcqsq\"}]}\r\netag: W/\"68cb876c-760\"\r\ncontent-encoding: br\r\ncf-ray: 9ec59f608a7b35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1888,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"1c6d7d6bc6b6d52e3cc5ffcea6f02b46","sha1":"1130c5c68e111a1cf775ebeb9575420661525e58","sha256":"3319f57c6573820075eef85be827f68ef4092e47ee0ff3b0f37d1b2eeba98a07","sha512":"7ccde47cb361bd25634424430a02bc46d1fa997162d15e6cbb378ae5bdb0ef2ec2e997bf1bf2309b91e1e3c4602d7aeef27bdd36bbb158ce64b577c5e3d88ca8","ssdeep":"","tlshash":"8b4156e27500b238722fd5e4f5c429ce74245011c5ba8fe9ee88e174c5c62fb137ae09","first_seen":"2026-04-14T20:57:47.038401Z","last_seen":"2026-04-14T20:59:58.885748Z","times_seen":2,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledgerorbitsolutions1.sbs/assets/hero.svg","fqdn":"ledgerorbitsolutions1.sbs","domain":"ledgerorbitsolutions1.sbs","tld":"sbs"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledgerorbitsolutions1.sbs/","date":"2026-04-14T20:57:23.299Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledgerorbitsolutions1.sbs","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 11:18:57 GMT","end":"Sun, 05 Jul 2026 11:18:56 GMT"},"fingerprint":{"sha1":"25:88:14:04:B1:D5:79:F3:68:0A:62:7D:5D:F3:8A:BD:4D:93:C8:4C","sha256":"C6:9A:AC:0F:1A:1C:11:32:43:F9:DA:00:1E:13:6B:EF:88:A0:5F:F0:3B:25:30:3F:86:77:39:38:65:B7:63:9A"}}},"request":{"raw":"GET /assets/hero.svg HTTP/1.1\r\nHost: ledgerorbitsolutions1.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledgerorbitsolutions1.sbs/\r\nCookie: PHPSESSID=3eit55uee19kkovob5tm346iua\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 14 Apr 2026 20:57:23 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\nlast-modified: Thu, 18 Sep 2025 04:15:40 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IK55n0LQmPZM3slpN3jufQpSO3QbDl88M6FAHJHJUc5ztlUpOuBy5FRi0SinM4f4l1aqzKS7Tugwq0uh9EQ5%2BBWfgPsnn0P509Omu%2FVyX1oAQmhBXJDCyZr0HQH2drCsEix%2BCBn%2FO0Uydyfv\"}]}\r\netag: W/\"68cb876c-114\"\r\ncontent-encoding: br\r\ncf-ray: 9ec59f608a7c35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":276,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c5ba04d5e0947582ce6dd8d3cbf12fea","sha1":"40709155a7d01c2e8234c003030b4cf3ea52ba42","sha256":"a40be3ef5673540fbc7113de51c9ac5b6b48f62fd4f00a3e4ac8b961058b3c47","sha512":"93b8bbd7a26fbb7466bbffcdfb88f1a7ff22e36be17184f069c406c6f05367964c5945f15a5980f9de50d6e5863c0a87401eaf46bc0c9d272b430179ced182bc","ssdeep":"","tlshash":"9ad02be1b680fa3ac218cf14836cc71a67aa70de81d10c58d5e062136040cd765fc30d","first_seen":"2026-04-14T20:57:47.040474Z","last_seen":"2026-04-14T20:59:58.887494Z","times_seen":2,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":134,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-14","alert":"Sinkholed","trigger":"ledgerorbitsolutions1.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}