{"report_id":"7e0202c3-bce5-487d-9753-fa41e450c81c","version":6,"status":"done","tags":[],"date":"2026-05-31T11:38:04Z","url":{"schema":"http","addr":"send-usdt.online","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"send-usdt.online/","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"title":"Send USDT v2","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"send-usdt.online","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-05T11:38:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"send-usdt.online","ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-05-29","domain_rank":0,"first_seen":"2026-05-31T11:38:05.290095Z","last_seen":"2026-05-31T11:38:05.290095Z","alert_count":8,"request_count":8,"received_data":950157,"sent_data":3573,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"64.233.162.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-24T22:21:07.624228Z","alert_count":0,"request_count":1,"received_data":5740,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"send-usdt.online/js/script.js","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.053Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /js/script.js HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 148409\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"script.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: W/\"cfd50d5925703ae22d1d885e5bada4e5\"\r\nlast-modified: Fri, 29 May 2026 18:24:12 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::9zxnz-1780227462051-a903631a336f\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":83582,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65520), with no line terminators","md5":"cfd50d5925703ae22d1d885e5bada4e5","sha1":"4c52644fa8de6206dcd10abab1766f7affcb3061","sha256":"a4d06064b767b43ec50738923769450b7aa282001bc891e5ff1e6cb0779b145a","sha512":"dcde059087424a0a0da35b0089cd9352f8063b241d02f5af6e165875d95212f5c007910671585ca67b460d5a8d17b418398043279ac657b51cfac2fc7ac9b24e","ssdeep":"1536:exPt3eI07tmxU9tuyrGjmEE73sBpRL3AwAf8rgh7fPk2u8yS:ehxeInxU9LojzAf8Eh7Hk2utS","tlshash":"33837a84bf80d957416b8137b317e6b4f6021532fd88d9da70443c98af96c36faa463b","first_seen":"2026-05-31T11:38:08.069691Z","last_seen":"2026-05-31T12:28:16.01771Z","times_seen":2,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-31T11:37:41.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 148409\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sun, 31 May 2026 11:37:41 GMT\r\netag: W/\"82b095330aa449ecc3b5383fb0bb4c6d\"\r\nlast-modified: Fri, 29 May 2026 18:24:12 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::pt6wt-1780227461860-b56aae576b48\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7696,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"82b095330aa449ecc3b5383fb0bb4c6d","sha1":"d5d826424808e094ee723ee44e93169f943b29d6","sha256":"09854a51a2db6fe358b0a72ded146177ede7111fbdcc3c300a57d2a4803fe7b4","sha512":"e051f24f9be32044bf3392d4c0b3ecbadff4e04253b233f0d526d597769681870e8c0639dff5a70a0c2f52fb48040db5f90b0a3e468054999abe4e34130322f2","ssdeep":"192:Vbvp+SsGmGO1VbFtBziCbiBUiTpLi4d7iIsJrhiVjC7yak:VbvVgGaVFHiCi6iBiCiDiVF","tlshash":"d0f19421e4d2977b419bb0e972a76b063fd442038605c5613e7ccad24fa3c9684bf5dd","first_seen":"2026-05-31T11:38:08.076278Z","last_seen":"2026-05-31T12:28:16.019819Z","times_seen":2,"resource_available":true,"data":null}},"time_used":248,"timings":{"blocked":119,"dns":85,"connect":1,"send":0,"wait":10,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/js/web3.min.js","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /js/web3.min.js HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 148409\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"web3.min.js\"\r\ncontent-encoding: br\r\ncontent-type: application/javascript; charset=utf-8\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: W/\"ce5bd54ade787e3757d0d32ff267280a\"\r\nlast-modified: Fri, 29 May 2026 18:24:13 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::m5m77-1780227462047-9e745140b246\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":642428,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65470)","md5":"ce5bd54ade787e3757d0d32ff267280a","sha1":"33daa933561e55f9988e2be25448078f97ef0db2","sha256":"f03340295d792adb763c777eaa96039aa831c2402bd7cbc970db44931fa736b8","sha512":"11ca21748cd36a3ee4bcfd3298cdd188ac5a9ef7f01af8ecae6a2e15139e2dbb485cd5e04010d479eeb0adfecbe1b8304a25c66512e2d8094390e4385ab08a62","ssdeep":"6144:iNajiG1YOdqCibdPB8c118X1Unf9F9CvU9sT6Q479FwwQPvi6naRq3A7Hpa:ic+skHYW79FlDpa","tlshash":"98d44b847690f0a10bdb50e554b70002f334b965701d94a8b7b99cebbea9ecda137f39","first_seen":"2024-12-04T22:03:33.643534Z","last_seen":"2026-05-31T12:28:16.026039Z","times_seen":2115,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/images/logo-processing-dark.png","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /images/logo-processing-dark.png HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"logo-processing-dark.png\"\r\ncontent-type: image/png\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: \"9c183381576c5954afd6f46c83391333\"\r\nlast-modified: Sun, 31 May 2026 11:37:42 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::tggnc-1780227462048-479d82dff830\r\ncontent-length: 16221\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16221,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 484x629, components 3","md5":"9c183381576c5954afd6f46c83391333","sha1":"aff1f6c6d089005dcba54005974e213cc0c9b26b","sha256":"680adb1766372aa0199763ea862bfb7569a59150bb2f664e8b2748da96efbf7b","sha512":"d72f32858f6faf45d3ce77981ad040cf37c4b87e71fa799ca7d077ddf2e81d89ce2019d6a3f6ff59557f1f0e034a2b39778815d989060f36fa451b881591272d","ssdeep":"384:/8+0tY9hgh2IeDyxEAFar7QRv9m3gaHwwhMYpe/ZH2i:/8+0t2uuDwHwr7QRvA3xQwte/52i","tlshash":"c172c105a51e0b78c9a147335d050585de8b8c6cdf72d06fca8697f0759c7316ea29fc","first_seen":"2026-05-31T11:38:08.082648Z","last_seen":"2026-05-31T12:28:16.027164Z","times_seen":2,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/css/style.css","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"style.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: W/\"774addaae9a4b843dbd1d211198b64da\"\r\nlast-modified: Sun, 31 May 2026 11:37:42 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::5jw77-1780227462038-54e5b91ea318\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":20346,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"assembler source, Unicode text, UTF-8 text","md5":"4d2bb9034fe75b9e26fd4b66e0cb7239","sha1":"c5910e51b6ec6772d28f80d7364da97365c3a4a0","sha256":"1ac545adccd013fcb51e13a6ed2a67a76ede0bfacc75c0bc208fe1abd48df36f","sha512":"29217f5c69605492e0ec4889e41f067841f1ff993cc516718562fde523b621f2fa26246d1bd638f0ec51770c358b554dab3d2713300faa523f39033a014c8995","ssdeep":"192:qFOuc1EpAHwB8+458OQfFCXkt4ytfItnFdN0SvI7VHmkdn9V+hMlNlxdx:qEtrQnhpFNscZnl","tlshash":"bd922246bbb92409710b9055b4e39b15671da003d50ecebf7af0606cdf893ed78b6b88","first_seen":"2026-05-31T11:38:08.085532Z","last_seen":"2026-05-31T12:28:16.023263Z","times_seen":2,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"64.233.162.95","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.044Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Thu, 07 May 2026 15:53:15 GMT","end":"Thu, 30 Jul 2026 15:53:14 GMT"},"fingerprint":{"sha1":"19:42:B0:56:3A:E4:79:BF:8B:69:E2:50:F4:76:BF:1E:A9:D7:7A:49","sha256":"D7:FF:C1:46:95:F3:5F:08:04:B0:E1:A8:FE:14:FC:60:19:58:D6:C7:D3:6E:82:B3:64:07:E9:E1:CB:9A:27:8C"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 31 May 2026 11:37:42 GMT\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5054,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"1a1622f39e9f351ab38999670ba20059","sha1":"4406222602ad0faf8e26423edf040c533bf72b82","sha256":"f0287112ce33d05a0d208d75dd84334092c60e78efbe859c3042c942edad764a","sha512":"1a652ecb2a0ed226e3e3b97c38aac37698b59d5ddee47265aee94c639388cca8fa8737892e94e70bc1415107f572c07585696c77c0f0903dfda9f814a82ca8e2","ssdeep":"96:aOEaNqOEaXFZHOEamOEaO3vOEaBOEaBJc+uTOEaNcNDOxMaNqOxMaXFZHOxMamOQ:9NNIxO34OxDNNryfO3iExlx","tlshash":"b1a18992002ba400ab971dc273cf7f3aaece50856085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-11T03:23:42.312671Z","last_seen":"2026-05-31T12:28:16.024798Z","times_seen":3948,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":108,"dns":1,"connect":15,"send":0,"wait":17,"receive":0,"ssl":98},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/css/all.min.css","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /css/all.min.css HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"all.min.css\"\r\ncontent-encoding: br\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: W/\"8a06f5ef88753b401348d8014813a7aa\"\r\nlast-modified: Sun, 31 May 2026 11:37:42 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::d9fvd-1780227462045-10acbc7c23be\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102466,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"8a06f5ef88753b401348d8014813a7aa","sha1":"d6c4ca4f22a0194d4c6d534bfc035a96bbb9ab7b","sha256":"172028341bf73bfda588ebef4c21dda2997e4756610659ae165429f0451b59dd","sha512":"8b02aafad1ff8c70234b95023121d4b02eecc51e3e37314a5aa6b8321f7c7b57ac7f0a53c5e94dd241409e8e57ac5e17d6148771ac9210d0ad2c44368d6bbdbe","ssdeep":"1536:vwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPG9rpgmLCa:P709gMGFiyPG9rimLCa","tlshash":"26a3b7f8e44c15d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2025-08-29T00:10:38.756039Z","last_seen":"2026-05-31T12:28:16.025454Z","times_seen":37,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/images/logo-processing-light.png","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.049Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /images/logo-processing-light.png HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"logo-processing-light.png\"\r\ncontent-type: image/png\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: \"c954245e4427711c43896980e93bddc8\"\r\nlast-modified: Sun, 31 May 2026 11:37:42 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::rx9d8-1780227462047-26cc7650ad68\r\ncontent-length: 16438\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":16438,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 470x592, components 3","md5":"c954245e4427711c43896980e93bddc8","sha1":"5238aeb3c0fc868091582d302f261bce11259258","sha256":"40bc1665097169ebf38d68fb74249d7951de7a19cb1ed4a73058974207df52d6","sha512":"58d72b14de5b4501816875d015f861eb76ecd22d113f73818ca6f1b2b981d7573b0a484ec304d9d4ec814504bb63663b733b600f8208b177fa1c98a623df6baa","ssdeep":"384:/8Fp8i/s9tzTaZZFttyz+G3Iub8m8zFfY0/dm:/8r/s9t6HG3ZbOfYmdm","tlshash":"ea72b0534a53a0addc6e3337deda061da62bee2d8e72326bcc4815142d7d7b94dc12c4","first_seen":"2026-05-31T11:38:08.090893Z","last_seen":"2026-05-31T12:28:16.026555Z","times_seen":2,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"send-usdt.online/images/cropped_circle_image.png","fqdn":"send-usdt.online","domain":"send-usdt.online","tld":"online"},"ip":{"addr":"216.198.79.65","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://send-usdt.online/","date":"2026-05-31T11:37:42.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"send-usdt.online","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 29 May 2026 17:19:50 GMT","end":"Thu, 27 Aug 2026 17:19:49 GMT"},"fingerprint":{"sha1":"D3:19:79:D9:2D:D9:40:2D:F0:77:E1:7A:F4:AC:A7:DB:2C:4E:10:25","sha256":"BC:C0:2F:B7:7E:46:23:DA:88:F5:40:4D:B9:73:20:AE:F4:05:F8:CD:42:48:32:1A:8F:CA:5F:49:E0:19:23:B8"}}},"request":{"raw":"GET /images/cropped_circle_image.png HTTP/1.1\r\nHost: send-usdt.online\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://send-usdt.online/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 0\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline; filename=\"cropped_circle_image.png\"\r\ncontent-type: image/png\r\ndate: Sun, 31 May 2026 11:37:42 GMT\r\netag: \"9b1691b508f064743a733260e5cf7e8f\"\r\nlast-modified: Sun, 31 May 2026 11:37:42 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::bggtc-1780227462058-62b0f9de04bf\r\ncontent-length: 56871\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":56871,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 298 x 298, 8-bit/color RGBA, non-interlaced","md5":"9b1691b508f064743a733260e5cf7e8f","sha1":"493de5364d68853aff3dd5f3c2f5f15ebf7bb0e4","sha256":"7a10955282074acea0389fc4998127dd93a265fec5576646c9ca2e65c51f378f","sha512":"3f6e460edf6b3db4cd216c581dfd0495dfa07b864b40eee58602cd066f4a6f891e99336fdae4b63152106c5c957dc3fdd5bbc775d1c4b03e3c9d4b3655b9b89c","ssdeep":"1536:KwvEGHsnqze6sDvquihZrg5SOnHfDdSyQ5o0eqN2t7Z:KMEgsTQ9KDd5P0eekZ","tlshash":"c243123218d6162dfbd84d6218a8a71c317b86ce77f3b75c40179003ad32be69836e65","first_seen":"2026-05-31T11:38:08.092773Z","last_seen":"2026-05-31T12:28:16.024036Z","times_seen":2,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-31","alert":"Sinkholed","trigger":"send-usdt.online","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}