{"report_id":"15c0d409-3806-443d-a5e8-43e6d132c65b","version":6,"status":"done","tags":[],"date":"2026-02-11T16:35:33Z","url":{"schema":"https","addr":"trustwalletpay.app/","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":""},"ip":{"addr":"172.67.190.7","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"trustwalletpay.app/","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"title":"Trust Payment Voucher","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"trustwalletpay.app/","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":""},"ip":{"addr":"172.67.190.7","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-18T16:35:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"trustwalletpay.app","ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":12,"request_count":12,"received_data":3570370,"sent_data":5291,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]}]},{"fqdn":"cdn.tailwindcss.com","ip":{"addr":"172.67.68.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-07-20","domain_rank":117330,"first_seen":"2018-07-09T05:46:13Z","last_seen":"2026-02-09T04:02:06.96467Z","alert_count":0,"request_count":2,"received_data":815933,"sent_data":828,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"172.67.68.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f276657649dcfb20c95ad025ced24d7f","sha1":"fbab0d276e90f51836a8c25ba758770bb5510171","sha256":"80a90eb1cc931e33dd1cd43d60793a670ada82c4a3e52bd7427054b885a0225a","sha512":"eb474be5f13939db5fae9ddcf634d444fc15c225d67364f5e9c7ae65f4e2e6a3a682502ddfdb9a543a1dbc1663f7e9c1412329137934feb384423d1df2dfa56a","ssdeep":"","tlshash":"7811e1d235a9efd609a896d9c16f9180f398ec7c405cf194d398c4bad5c104631e1fb3","size":1000,"data":"","first_seen":"2025-01-07T08:01:50.051384Z","last_seen":"2026-06-07T07:20:53.985711Z","times_seen":913,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"trustwalletpay.app/style.css","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.133Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: W/\"6974e9c8-37\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 4627\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vj1QbAYwsZoSe5WLqeIvqLUP3j2nQLZC74I3lJ9wV2cmPIdaj9DjaUpaQEzZ8AZTo9626QyAIox4mGR84a%2B0dWnTVUgLr1%2BwhntW7pLyYuU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9cc5420a8ade9938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":55,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a12dccd1e57dbb960b9ff72ef2c78c88","sha1":"308eb54eaad3aadf05e27bc9766ba6da0e920c16","sha256":"aa24b273f2d60c3c7ad135a92800a9bcf9c7bdbe3335b79c6b53b70d241c5b30","sha512":"1b2223d811906bb6410a143c84c84cae42ebd3f14d1bc40a8c2ecc41d5cb4dafecbb2bcbcaf57d51c1fd1c039da9cfd333fb332543e55435dfa7bee3b97b7ac7","ssdeep":"","tlshash":"c6900299c9e8a45404906503a3494996240a85552a649e4164761669218155e159adc2","first_seen":"2026-02-11T15:18:31.576202Z","last_seen":"2026-02-11T16:35:38.04972Z","times_seen":2,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/logos/qr.png","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /logos/qr.png HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: image/png\r\ncontent-length: 86159\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: \"6974e9c8-1508f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 4627\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=21rfZIu9qDe5z%2F5%2BD3DgfTrdlnHRsYQezVKlLSnsa4fHedsvutGmYFm0XW9yaXyIVg8z12RSHXfNh0DN%2FqI8T8Ms5AyTF9%2FWRMxcV%2BnZqy8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cc5420a9ae49938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":86159,"size_decoded":0,"mime_type":"image/png","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 598x596, components 3","md5":"7dd186b64b091bf682e7049b6436dab3","sha1":"176169e9dd06c5d98bf898f2a3c0ef9456dcaa41","sha256":"d49d7c5bfd2a317e76b03dca197bd1caf6356991b7ef7cff4624ed8f4dfd0bd1","sha512":"8e46be64519e4e6a742fb2bff293a6879bccad921e4e89e4fd6e7f636280b25c85f79f1517bac6cdbb94acb1fbc3d6cd6bdd91130396bf869b960d1f051a383f","ssdeep":"1536:G1DX8yGvhNNM1WfymGzrqjp7WimoTXrSV1gvDcmJlRtD7oRxvJ6+:Qo1vi1WqtWp7hmSXg1g7Jlzv+5Jx","tlshash":"87830296c2afc7d2f7a915b4086fe88328b02a38ad958765c1726cf147117fd4af341b","first_seen":"2026-02-11T15:18:31.581078Z","last_seen":"2026-02-11T16:35:38.053666Z","times_seen":2,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/index.css","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /index.css HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 4627\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U%2FKzmbMH9cPHDrvmbeXWkqAqnFf5%2FXejf85hHKrqqG4wZMRUrdlMXx10euJpC%2BNTXvRDrwjyD9jeDANQFF0U5DjdfE92zcoj3LzSZE5tRnk%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9cc5420c9b509938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-11T16:35:10.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 11 Feb 2026 16:35:10 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2w%2FQ%2FCd%2Fgis0oQIaHLS3UKfRh8jmZeTXWyzhs6laprrLc9xXLri4RS%2BfIbxoYjStLUGwxOCzLak1hNgGiceDwSIiSnJwdqSst58dU0r3pCU%3D\"}]}\r\nage: 5998\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9cc542096fc80a3d-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3653,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"330d68e93766ca25fc9327d5149d1b51","sha1":"9b957362cc5f8b4efd5017c440a6ff0f742950da","sha256":"9814912955d47c3ee60b12fc154032a78d00351bd4d863f4898daaefffc6f6ee","sha512":"efcecefb7278314847fe9f4c0cfeef3de0daeab2c7167196ca4fe67e02ccd24c697065f09d143abe0291ecb778b42dfa56e054f49b413de7cb325488adeb9fad","ssdeep":"","tlshash":"d771403418f504b720d781e4f972aa1aeec9d857c50fc99871fc86a25fc3d56cc43698","first_seen":"2026-02-11T15:18:31.564098Z","last_seen":"2026-02-11T16:35:38.058858Z","times_seen":2,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":93,"dns":52,"connect":8,"send":0,"wait":28,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/index.css","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /index.css HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 4627\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=moPCzJgLI1b5hCYTyQqIsrIZFud5AB%2BRjfrFcsJxIenjeLoagIx%2F6uNtcVg6F3m8fe2dmUE%2FZ8YNNWu7OHVlCiBnEzG6N5CeKPCPqgj5jxg%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9cc5420a8ae19938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/react-core.js","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /react-core.js HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: W/\"6974e9c8-32ce51\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 4627\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QGp37GkmTcJj4T4Rz%2FUV6mDU3%2BaadPlgeVTy%2BFVDaIRtzwdUFa%2FOqFq%2Bgu%2FSUFoZPhNScUmnttUx7yP1tBOIoypnrpMe1S1KTX0cj2MlDLE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9cc5420a9ae29938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3329617,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"955340f85fa7e15636d1e0d05d2e16bc","sha1":"2706a37cae16dcc6b1c8ff253edd65885e7e9003","sha256":"a4931b204c8cb54998f5ed6c0302ee4c1081e16aa7dd1d1317c7069af53c8b9b","sha512":"0a5b7c93df86d3adc2b8324ffbade32eaa2dc4c355bb6f654252e3cd879afdd6974f7e2a1634a4c2e4fdbf75c90e1724979aceacdcad629191417e21948deb6a","ssdeep":"24576:OIa5PiXu+ynSgbqGCFCjCyC3CpTYO1YsC7CZCwC1CgavJpEFtpAD9faO+joUT9F6:O+W4iholcQhAFDjyG","tlshash":"44259443a2d0386605d35fb27a2750daec2d8fef618c5aa9b44dfc38b8e4154d6ec670","first_seen":"2026-02-11T15:18:31.578488Z","last_seen":"2026-02-11T16:35:38.062051Z","times_seen":2,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/logos/logo-footer.png","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /logos/logo-footer.png HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: image/png\r\ncontent-length: 5903\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: \"6974e9c8-170f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 4627\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rGkfIZAJuCktF34wRX0HXvt1bhtF7kQ%2B95zQzbDfmMUBiZ7TenQ7y6xKT7%2Bo1icpqGAu1gKGlR7oy2C2vdguvArzmgY5PDD7CdNjkFlVifA%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cc5420a9ae59938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5903,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 293 x 80, 8-bit/color RGBA, non-interlaced","md5":"e46d5731a7cc58448e0a45dd21153660","sha1":"647655a2eb69253c3ecaf2c0bb0fc2fb1ed1365f","sha256":"18a1e6c63d170b5a7ab8c36c347dca14238bb0bf428f42353324c439206fc146","sha512":"238ea78c6c1d1c9342d65e64047c8972029ff1b9fc7558b74fd3f8350fb1596d78d412d412e1e15be92ca47f7a151d75a12bda58e53f7cf63aa9a3c2a9c7c9e7","ssdeep":"96:BSxKB/OKn9O2RznPFIHQKa2peCppDAK10drUho06sMze5xhaaHekx1Zr7ccG:BSAtOYJIHM2pemp710pMo06sMzfGx1x4","tlshash":"6ac19fe22a24b7f83c96a379c360593c50dd363228464f2f6a60516df81e8fb875951b","first_seen":"2026-01-10T14:02:29.677703Z","last_seen":"2026-04-28T13:46:00.717468Z","times_seen":816,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/index.tsx","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /index.tsx HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 4627\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FdUXZ7w1U7JgEi9DjhuwtTq5Q7MC8XBLdcbKuAPG5A837lcBdH0LJznh0vAaho2A85EYyZnsg%2B8XfJlPDqtzoByDV2UEebYx0bAmsIW3Q4s%3D\"}]}\r\npriority: u=3,i=?0\r\ncf-ray: 9cc5420a9aea9938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/favicon.ico","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:12.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:12 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\nage: 4627\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LE6PLsXs3rERkK0VJdsUTkAdU9j8W9gnBOozDC75vptdbYlVZCIpFwv3oh%2FB4J%2F6PgsPjGM1wT9F5iaquS1DMqJRP1ZKpJJGTVbsHjGw5Ds%3D\"}]}\r\npriority: u=6,i=?0\r\ncf-ray: 9cc54210bc2e9938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Tailwind CSS","description":"Tailwind is a utility-first CSS framework.","website":"https://tailwindcss.com/","common_platform_enumeration":"","icon":"tailwindcss.svg","categories":["UI frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3653,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"330d68e93766ca25fc9327d5149d1b51","sha1":"9b957362cc5f8b4efd5017c440a6ff0f742950da","sha256":"9814912955d47c3ee60b12fc154032a78d00351bd4d863f4898daaefffc6f6ee","sha512":"efcecefb7278314847fe9f4c0cfeef3de0daeab2c7167196ca4fe67e02ccd24c697065f09d143abe0291ecb778b42dfa56e054f49b413de7cb325488adeb9fad","ssdeep":"","tlshash":"d771403418f504b720d781e4f972aa1aeec9d857c50fc99871fc86a25fc3d56cc43698","first_seen":"2026-02-11T15:18:31.564098Z","last_seen":"2026-02-11T16:35:38.058858Z","times_seen":2,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"172.67.68.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 21 Jan 2026 08:26:32 GMT","end":"Tue, 21 Apr 2026 09:26:27 GMT"},"fingerprint":{"sha1":"90:9B:CE:CB:FE:F2:C6:A9:53:13:5D:52:B6:07:F4:B4:84:28:97:60","sha256":"61:49:94:E8:FB:D1:24:14:DF:C9:92:BE:60:84:A8:D8:37:E3:89:DC:42:7B:0A:64:D3:F2:32:FD:D0:93:4C:4B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncache-control: max-age=14400\r\nlocation: /3.4.17\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::rc94d-1770827496500-36009073ecab\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 214\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ecw%2BzHXT5%2FWcOExzuezmhGxsDheKyWmrkuoB%2BxOX4Ep%2FiE%2Bf7NnenMPoTcKgHdM4Vi18rS6GED7ni5u0jEFvURlMuUw9mLBVo1Nnpvt1r%2Fg%3D\"}]}\r\ncf-ray: 9cc5420ace0e2e10-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T03:17:28.028748Z","times_seen":16257673,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":24,"dns":1,"connect":8,"send":0,"wait":21,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/logos/iso-badge.svg","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /logos/iso-badge.svg HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 4627\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6974e9c8-1dd9d\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CGBvmvquH2z%2FKKmOefsr8Q971JO%2B3%2F%2B1zi%2BI98INJpcSTJGts68sEX%2FhpLZcOT9dhVfotaOIYteraUGPcacy6XgpRcCFY1IaJdlizr97YRE%3D\"}]}\r\ncf-ray: 9cc5420a9ae69938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":122269,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6f8689bb04971f4d6e76dc89c99f55ee","sha1":"54830cbb3c5861e40d6120f2aaefea33f50710b9","sha256":"64d18eaae43c517e1b8017ad4dd8a8b7fabbd16e4d6bb549601b67dc9a7f4a06","sha512":"41133dc486b0f44ca09cbbac63efadd877813d10b19747a24a561b6328f33651cde639fc3e436de053606a12562aa080b5f2820bb589e4260b2db1615c33d4a5","ssdeep":"3072:V11E6spEKe8XOoRcmjpSZY/BvFTWgO0PgKFdXJj:xVDKDXOoRc0SZkBvNW90PFpj","tlshash":"9cc30270c7a9ecbb0b3d0191269f65a341d51403a75e08d27fa1af26ceed2419ece17b","first_seen":"2025-04-02T11:53:22.939917Z","last_seen":"2026-05-21T05:08:38.129505Z","times_seen":55,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/logos/logo-header.png","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /logos/logo-header.png HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: image/png\r\ncontent-length: 5903\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: \"6974e9c8-170f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 4627\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z91CO0uPW0yLhWtot6yGRuUELHGs88Qtu1CvOxDyeXlI1%2BGoO1uabk9OX4ibQI2CPGRpvGDIrJaTzYJbwF%2BE9hJlNSbxSrofYaP1TprUJIo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cc5420a9ae39938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5903,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 293 x 80, 8-bit/color RGBA, non-interlaced","md5":"e46d5731a7cc58448e0a45dd21153660","sha1":"647655a2eb69253c3ecaf2c0bb0fc2fb1ed1365f","sha256":"18a1e6c63d170b5a7ab8c36c347dca14238bb0bf428f42353324c439206fc146","sha512":"238ea78c6c1d1c9342d65e64047c8972029ff1b9fc7558b74fd3f8350fb1596d78d412d412e1e15be92ca47f7a151d75a12bda58e53f7cf63aa9a3c2a9c7c9e7","ssdeep":"96:BSxKB/OKn9O2RznPFIHQKa2peCppDAK10drUho06sMze5xhaaHekx1Zr7ccG:BSAtOYJIHM2pemp710pMo06sMzfGx1x4","tlshash":"6ac19fe22a24b7f83c96a379c360593c50dd363228464f2f6a60516df81e8fb875951b","first_seen":"2026-01-10T14:02:29.677703Z","last_seen":"2026-04-28T13:46:00.717468Z","times_seen":816,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trustwalletpay.app/script.js","fqdn":"trustwalletpay.app","domain":"trustwalletpay.app","tld":"app"},"ip":{"addr":"104.21.73.124","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwalletpay.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 14:27:53 GMT","end":"Fri, 24 Apr 2026 15:26:35 GMT"},"fingerprint":{"sha1":"99:D4:9B:19:A5:E9:C3:C4:89:CB:29:24:EA:BA:C5:D4:E0:CD:2B:C4","sha256":"0D:F1:57:01:75:85:E8:C0:73:1C:61:1B:C6:B1:6F:3B:80:73:E7:AB:3A:A6:8D:4F:2D:33:52:AB:44:1E:03:D5"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: trustwalletpay.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwalletpay.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sat, 24 Jan 2026 15:48:24 GMT\r\netag: W/\"6974e9c8-907\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 4627\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KBm6XPoOMU%2BwlqlmDvLzg%2FmKtF0rT5fRChZzNqZsZpTwWj6%2BELInDNcscYu324jIy%2F8WtNdmgc%2F3LMeEj9UXBBzN9n%2Fc118t%2BAeyJQU0MJk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9cc5420a9aeb9938-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2311,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"e29051ba15680eed63548020d32f92a0","sha1":"aa040385597684228361d4e5ee1291f804af1cb0","sha256":"e8d8d0fe67851b7c9f83a888048d706fcc593bf056fd708eef93b8e1501dff9f","sha512":"7a2ac771e0f8d115c945c0c2aaa40f10d78ffef081440d8c89f8c9efc5aad011afea5d56d13522fde8c90aa0ec347ecdd19da2f1e3396887544289a0c005b2b7","ssdeep":"","tlshash":"a64140feb9f500f8d86396a8d74ba202a8504147d886ec71b30c88c05fdcc2c68b6bc9","first_seen":"2026-02-11T15:18:31.589432Z","last_seen":"2026-02-11T16:35:38.069218Z","times_seen":2,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-11","alert":"Sinkholed","trigger":"trustwalletpay.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tailwindcss.com/3.4.17","fqdn":"cdn.tailwindcss.com","domain":"tailwindcss.com","tld":"com"},"ip":{"addr":"172.67.68.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwalletpay.app/","date":"2026-02-11T16:35:11.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tailwindcss.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 21 Jan 2026 08:26:32 GMT","end":"Tue, 21 Apr 2026 09:26:27 GMT"},"fingerprint":{"sha1":"90:9B:CE:CB:FE:F2:C6:A9:53:13:5D:52:B6:07:F4:B4:84:28:97:60","sha256":"61:49:94:E8:FB:D1:24:14:DF:C9:92:BE:60:84:A8:D8:37:E3:89:DC:42:7B:0A:64:D3:F2:32:FD:D0:93:4C:4B"}}},"request":{"raw":"GET /3.4.17 HTTP/1.1\r\nHost: cdn.tailwindcss.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://trustwalletpay.app/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 11 Feb 2026 16:35:11 GMT\r\ncontent-type: text/javascript\r\ncache-control: max-age=31536000\r\ncontent-encoding: br\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: MISS\r\nx-vercel-id: fra1::iad1::gv5lr-1767495562922-401ec0c56245\r\nlast-modified: Sun, 04 Jan 2026 02:59:23 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nage: 3332147\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PB6xR7GBXDyRrkrdslsaoCfCZjcwk1NrPSHyUwJzfGWUjgh7LiMxSZVJrh1iJH4dZr7vswQLA6gmtWV20IT9YVk%2BdEhBFfukiHKvfDHtU48%3D\"}]}\r\ncf-ray: 9cc5420b6e9e2e10-ARN\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":407279,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52853)","md5":"7a614b9a197e532c00d09a23b0996b5f","sha1":"1ff1738a40f3716e30e9031b181b0955ae578955","sha256":"176e894661aa9cdc9a5cba6c720044cbbf7b8bd80d1c9a142a7c24b1b6c50d15","sha512":"a67bc26f52d938358471be5671ff4b79e11af4e68b486aaf73a35a4c9bf3777aab51101af81563b4e5b7ba4b04dd8971fcfa9ee2c41fb10a0c1ee5604a99abd6","ssdeep":"12288:fpgrZxSAoNbJb0Wie75aUXGuyQZhK4O0s:RCVoNB0Wie75aUWmnO0s","tlshash":"e8844aa57396702647eb51e850ea1042f2beaa38840c44bcf7edd4da39e5e4440fbf79","first_seen":"2025-07-28T16:58:08.903462Z","last_seen":"2026-06-09T03:11:00.955352Z","times_seen":39871,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}