{"report_id":"e145bedc-1a76-464a-a72f-f5f50b715a50","version":6,"status":"done","tags":[],"date":"2026-01-19T18:52:20Z","url":{"schema":"https","addr":"usor.click/","fqdn":"usor.click","domain":"usor.click","tld":"click"},"ip":{"addr":"104.21.19.99","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"usor.click/","fqdn":"usor.click","domain":"usor.click","tld":"click"},"title":"U.S Oil ($USO) - Tokenising Real World Oil using Ledger Blockchain","dom":{"size":1177,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1177), with no line terminators","md5":"d24891bf41722229c597eac272373655","sha1":"22df3fa4e0b3fd29741bc92b8ed499ad304fbae3","sha256":"a77ace12685962a6ac827e348ed38e279651b2e963095f332fbbb5cfd53870f0","sha512":"262a54deb9294dddfd41c0d8d0094bb5551853805f03576b947eec25a7caa6ab09577ad8781caf89c7f38ddccf5cee62165c4f18c36f6f282948c5e3946486b6","ssdeep":"","tlshash":"5e21f1e570a5406404379bbbe8b1f381512ffa0fee97139a6864e53846c1e2839075c9","dom_hash":"domhash60dd91b054119febbd6248a215ff2bd9","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"usor.click/","fqdn":"usor.click","domain":"usor.click","tld":"click"},"ip":{"addr":"104.21.19.99","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-23T18:52:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-19","alert":"Sinkholed","trigger":"usor.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"managmenetdetails.sbs","ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-12-27","domain_rank":0,"first_seen":"2026-01-19T18:52:21.752274Z","last_seen":"2026-01-19T18:52:21.752274Z","alert_count":0,"request_count":4,"received_data":733507,"sent_data":1752,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-18T22:17:29.309663Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"usor.click","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":7833046,"sent_data":479,"comment":"","tags":null,"fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"managmenetdetails.sbs/_nuxt/assets/index.js","fqdn":"managmenetdetails.sbs","domain":"managmenetdetails.sbs","tld":"sbs"},"ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"46ca340e4938cccabd2d133cfcf8ebbc","sha1":"14e64dc659191bfc249a1da89216604c2948d8ce","sha256":"05f0b2cace0d2c939fc201d934071112785077d71ae04879b90d6783665763b4","sha512":"2554b28d1f8508f1bb9efefcb0f1e4f233bb40db7d28cb964e9b102c0d3a33209ce0fa502d644925b4df8924bc127045c33b1f8822408e1353676fc7442637a4","ssdeep":"12288:LRF5sBNhAUKBgeJPbctfJmC3tw3wjruS9SIOkWLsaQir5g/d:LRGKB4w3w54v4d","tlshash":"6af4b58b1179e4255d90bce478f11c712cdcace0ec5a08b5f3b7dea4e254421a37bba6","size":729211,"data":"","first_seen":"2026-01-19T18:35:42.150788Z","last_seen":"2026-01-19T19:37:18.238319Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usor.click/","fqdn":"usor.click","domain":"usor.click","tld":"click"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"9d4e6a9925896ab6aee78fd878bfe151","sha1":"6809372249b1f8a8cbc94832e6b2de2b394fdeec","sha256":"778c0f7dd6d56cbd6fdd8699ec10b52d1c73b40104d396836959c9e4c187352f","sha512":"442eff2257c5179ae453ceef7cbc0654b774bc63c4184e982343d0ced844a7a5bf5f197cc49db539647d85f426b8547af4fcac0deda8185024c22d286a5b0ba5","ssdeep":"6144:YouXBrBLN5sovvcMUDz1MuTvvcMUDz1MucF3LVtg4m8mU7yziJIuRmF80767i7W8:Youp5s367Gf0Fa1dDZogqQ4em","tlshash":"20e4c74d1239d8268d50d1f57ce20dc5281cace0ecde09a1f7f7ea64e29891172bf7a9","size":696732,"data":"","first_seen":"2026-01-19T18:35:42.151838Z","last_seen":"2026-01-19T19:37:18.24836Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"usor.click/","fqdn":"usor.click","domain":"usor.click","tld":"click"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-19T18:51:57.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usor.click","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 18 Jan 2026 23:33:20 GMT","end":"Sun, 19 Apr 2026 00:31:59 GMT"},"fingerprint":{"sha1":"8B:68:9B:DF:92:23:CA:9E:E5:73:6B:6F:79:5D:1E:3F:FC:26:14:60","sha256":"B8:09:75:A0:5C:95:24:5F:59:DA:A6:D0:48:C4:7C:80:B9:19:BF:BD:F6:94:29:EB:41:98:B1:50:D7:47:39:97"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: usor.click\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 19 Jan 2026 18:51:58 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sun, 18 Jan 2026 22:27:01 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JDmSmMW88gR204AwKw5y3w8mbcaQtUEGAWFGRIb5rqCD54KU3UKCnBCs7nikwsNLZ6misfiM1pF90uuscLO7QCciL7Pmwrln\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c0886c7396b56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":7832426,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (64724)","md5":"4611867fa91e3d3b5ab576b988faa974","sha1":"ed0ef63bc0e12bb13bff10d17b0fa8590ff2110a","sha256":"2df1165c405bfadd9918ecf53c7d2a95be9c4973baae789d88ec4500a140b26c","sha512":"2478e2d87f6517ce5df644cf0941e02ff8273631e87eb4184f667105768504493ae594d92c8a16cb83fa34bc6a788e6520a199b68b07c00c38d9f2977585109a","ssdeep":"24576:jNENzNaNhN66HnVGywYAzKWi+q4bbgUr4y6MHhErfFXv:jWdA/ZZylrf4yzudf","tlshash":"b42523a59925bc3e8c3891d0d28a1e3dae71ecd9c574d6e587ca10a62387ff709ca434","first_seen":"2026-01-19T18:52:26.10692Z","last_seen":"2026-01-19T19:35:16.631263Z","times_seen":2,"resource_available":false,"data":null}},"time_used":398,"timings":{"blocked":68,"dns":48,"connect":1,"send":0,"wait":255,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-19","alert":"Sinkholed","trigger":"usor.click","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"managmenetdetails.sbs/_nuxt/assets/index.js","fqdn":"managmenetdetails.sbs","domain":"managmenetdetails.sbs","tld":"sbs"},"ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usor.click/","date":"2026-01-19T18:51:58.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"managmenetdetails.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 18:50:45 GMT","end":"Fri, 27 Mar 2026 19:47:53 GMT"},"fingerprint":{"sha1":"6F:F8:95:83:DF:4A:F6:D9:89:BF:55:98:3E:97:00:F1:DD:3E:70:41","sha256":"F1:62:1A:0A:10:D4:44:5A:54:B6:FD:27:DF:3C:2B:6A:04:FF:D3:19:B8:06:45:5F:C0:DA:E0:E1:73:F3:A8:7D"}}},"request":{"raw":"GET /_nuxt/assets/index.js HTTP/1.1\r\nHost: managmenetdetails.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://usor.click\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usor.click/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 19 Jan 2026 18:51:59 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Mon, 19 Jan 2026 18:34:22 GMT\r\netag: W/\"696e792e-b25c7\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=300, must-revalidate\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G9676YmOJdwx%2Bhk1ToLN6EusuT2QOe8b5T%2BG%2BVlEmhodJ077WYTXfRK3%2BPtltjr%2FyeWLYMTMkAVLXzGeRBeTWcRA5eEpcsYUyF2V%2B5RtdwUgtH4%3D\"}]}\r\ncf-ray: 9c0886cc1dfa56c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":730567,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (57476), with no line terminators","md5":"46ca340e4938cccabd2d133cfcf8ebbc","sha1":"14e64dc659191bfc249a1da89216604c2948d8ce","sha256":"05f0b2cace0d2c939fc201d934071112785077d71ae04879b90d6783665763b4","sha512":"2554b28d1f8508f1bb9efefcb0f1e4f233bb40db7d28cb964e9b102c0d3a33209ce0fa502d644925b4df8924bc127045c33b1f8822408e1353676fc7442637a4","ssdeep":"12288:LRF5sBNhAUKBgeJPbctfJmC3tw3wjruS9SIOkWLsaQir5g/d:LRGKB4w3w54v4d","tlshash":"6af4b58b1179e4255d90bce478f11c712cdcace0ec5a08b5f3b7dea4e254421a37bba6","first_seen":"2026-01-19T18:35:42.150788Z","last_seen":"2026-01-19T19:37:18.238319Z","times_seen":44,"resource_available":true,"data":null}},"time_used":518,"timings":{"blocked":104,"dns":79,"connect":1,"send":0,"wait":309,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://usor.click/","date":"2026-01-19T18:52:01.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Tue, 09 Dec 2025 17:10:07 GMT","end":"Tue, 03 Mar 2026 17:10:06 GMT"},"fingerprint":{"sha1":"82:59:95:33:5E:76:7F:3E:5B:45:F4:CA:83:29:7C:B2:19:B0:A5:C0","sha256":"A1:28:19:D2:C4:EA:69:3E:6D:8D:7A:20:FC:3E:A6:13:BA:59:C5:9C:DE:7D:D1:25:3D:35:68:98:FC:47:82:9D"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Mon, 19 Jan 2026 18:52:01 GMT\r\ndate: Mon, 19 Jan 2026 18:52:01 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-06T07:18:14.741611Z","times_seen":29310,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":121,"dns":0,"connect":21,"send":0,"wait":32,"receive":0,"ssl":96},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"managmenetdetails.sbs/api/config","fqdn":"managmenetdetails.sbs","domain":"managmenetdetails.sbs","tld":"sbs"},"ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://usor.click/","date":"2026-01-19T18:52:01.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"managmenetdetails.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 18:50:45 GMT","end":"Fri, 27 Mar 2026 19:47:53 GMT"},"fingerprint":{"sha1":"6F:F8:95:83:DF:4A:F6:D9:89:BF:55:98:3E:97:00:F1:DD:3E:70:41","sha256":"F1:62:1A:0A:10:D4:44:5A:54:B6:FD:27:DF:3C:2B:6A:04:FF:D3:19:B8:06:45:5F:C0:DA:E0:E1:73:F3:A8:7D"}}},"request":{"raw":"GET /api/config HTTP/1.1\r\nHost: managmenetdetails.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\ncontent-language: en-US,q=0.8;en\r\nOrigin: https://usor.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 19 Jan 2026 18:52:02 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hil2dPlQzIuRFsqEtCGCWjEz0dahRStuXH3CUa4PN5oblLKtEzGcGvmZTZjsyj5Otz7FiJC%2FJGismFAnUep0uzSIUz3VqjK0DetQFw73CWbynr0%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9c0886df2a0156c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":184,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"5c21149ca757f641db725562d3918f92","sha1":"2cb6d56eedb976d09351d1f8a5e15b8c9526f0d8","sha256":"5e7cf85fc889ac742d04853c36256937ee2481ffe65f14906f4cfc5dc03fa588","sha512":"d473ab9254903c2decf74ea7bdb9b1ccf351b0201d175033332ffee6bde977b45f57994b957e45c3ad744996702d8ef96864227652e89eea848e0e74f23c5595","ssdeep":"","tlshash":"f3d027f7f397d245408357d518754dc9e0115970e7c1551154584f46559d30dc04d837","first_seen":"2026-01-19T18:52:26.112305Z","last_seen":"2026-01-19T18:52:26.112305Z","times_seen":1,"resource_available":false,"data":null}},"time_used":293,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"managmenetdetails.sbs/api/is-banned","fqdn":"managmenetdetails.sbs","domain":"managmenetdetails.sbs","tld":"sbs"},"ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://usor.click/","date":"2026-01-19T18:52:01.774Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"managmenetdetails.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 18:50:45 GMT","end":"Fri, 27 Mar 2026 19:47:53 GMT"},"fingerprint":{"sha1":"6F:F8:95:83:DF:4A:F6:D9:89:BF:55:98:3E:97:00:F1:DD:3E:70:41","sha256":"F1:62:1A:0A:10:D4:44:5A:54:B6:FD:27:DF:3C:2B:6A:04:FF:D3:19:B8:06:45:5F:C0:DA:E0:E1:73:F3:A8:7D"}}},"request":{"raw":"GET /api/is-banned HTTP/1.1\r\nHost: managmenetdetails.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://usor.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 19 Jan 2026 18:52:02 GMT\r\ncontent-type: text/plain;charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncache-control: private, max-age=300\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BFqXPWzHgbzXJVeMwnCEBLZ7BNqedIjZAGXm3FH%2Fu7vMjvB4OfNOJoGP9lTyp%2FkL0MeZMjuuoYf4IOrXQ6VkzBZcsROaQWlHpHp6A2gRAIK3BuI%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9c0886df1a0056c0-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-06-06T06:39:27.626275Z","times_seen":114208,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"managmenetdetails.sbs/api/visit?origin=usor.click","fqdn":"managmenetdetails.sbs","domain":"managmenetdetails.sbs","tld":"sbs"},"ip":{"addr":"104.21.59.195","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://usor.click/","date":"2026-01-19T18:52:02.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"managmenetdetails.sbs","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 18:50:45 GMT","end":"Fri, 27 Mar 2026 19:47:53 GMT"},"fingerprint":{"sha1":"6F:F8:95:83:DF:4A:F6:D9:89:BF:55:98:3E:97:00:F1:DD:3E:70:41","sha256":"F1:62:1A:0A:10:D4:44:5A:54:B6:FD:27:DF:3C:2B:6A:04:FF:D3:19:B8:06:45:5F:C0:DA:E0:E1:73:F3:A8:7D"}}},"request":{"raw":"POST /api/visit?origin=usor.click HTTP/1.1\r\nHost: managmenetdetails.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://usor.click\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 19 Jan 2026 18:52:02 GMT\r\ncontent-type: text/plain;charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dDEZnjM%2B6RQPg1SeF8yhinEoCTs8JpLzNnnsjt8KkWHGxoeTsX1FPjfsfsWaiPLjNM8R0hXPlxq%2FOqj0BcrB4tV1TIIIUIeb8KzDR3mthtaZlvk%3D\"}]}\r\npriority: u=4,i=?0\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c0886e1897556b1-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-06T07:10:20.230898Z","times_seen":422778,"resource_available":true,"data":null}},"time_used":656,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":656,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}