{"report_id":"2a852ab7-5c7c-426a-80bc-77c29d13bef1","version":0,"status":"done","tags":[],"date":"2026-07-04T10:50:41Z","url":{"schema":"http","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":0,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"final":{"url":{"schema":"https","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"title":"Ledger Wallet - Portfolio","dom":{"size":101445,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (395)","md5":"709243f9f0f0ce9cc37f070fd88445d2","sha1":"2813c8f5569861442204303e897594a186b9ecd1","sha256":"034ec19bd4325b0ac375bead546997eb33232ced7987f00b1c7dc615112a3411","sha512":"56089b89353c750fa9804b8969797b4c415f13e043b216f7b2cee70d00590553f51c8b70772d800cd565488b25970f6bd4e2cc9b8ac6f47503a04fd6fbb3674c","ssdeep":"3072:Fik/BKCFSYHGtUDiZvgZir81OHYoXKBkTWD:FH/WYHGtUDiZvgZir81OHYoXKBkTWD","tlshash":"3da3635648f621371653a4a87bdaa6013b51d117cb49ac147bec63a8cfcbe40cea739c","dom_hash":"domhashf3490edae4e7db8bd1ceb8dcc2f669c6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":0,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-08T10:50:41Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"adclickja.com","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-07-04T06:36:27.141143Z","last_seen":"2026-07-04T06:36:27.141143Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":461,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ledger.com-weblive.co","ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-07-04T06:36:27.138062Z","last_seen":"2026-07-04T06:36:27.138062Z","alert_count":128,"request_count":32,"received_data":1357507,"sent_data":16700,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery UI:1.12.1","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:1.12.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-06-28T22:41:44.776353Z","alert_count":0,"request_count":1,"received_data":1650,"sent_data":546,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.1.155","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-06-28T23:50:27.274026Z","alert_count":0,"request_count":2,"received_data":815426,"sent_data":942,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ledger.com-weblive.co/js/main.js","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"e73a9d3be1f087fae74f24549c39b927","sha1":"eead426fe2acf87d60dea96b6dc53c3ef68b64db","sha256":"b7ec09043361e4e2695bdfbb167e7a0ba210760e05d60b3c35a7b5261420336e","sha512":"aa38ce3f18f87078e3b6660598b2e7d870f061e724d8191d209c0da62aefc59b666c3ca86d049cdd868f7aa3c0deab8192074b91c7aa20bf2f767d8b83fb0f7e","ssdeep":"384:9vLAog/I1wdsExXxigaSUvRj5pxbqVZL3P:9vLAD/I1axBigI7pxel3P","tlshash":"61623b3ca3b0343bead7665e8cce3f01aa004d335e059894b55d57841f4bc8acb29e6b","size":15460,"data":"","first_seen":"2026-07-04T06:36:32.861234Z","last_seen":"2026-07-04T10:50:44.976441Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"00922409b0569afbf531495095d70812","sha1":"c6276bdc55cb81edd759d09e6d7e2c617a0734c7","sha256":"d105c74c8bd5c6040d75b8d473eff8716927d36628c67ac600073af3b6c437c5","sha512":"cbff64e8b75599681ee29e324c972e3b62ba64b370f22ea6e4b133877dde079f665dc4a5d50d26e9861d95dc15deb0fa5e7d0640e48edd460699d17606e4d42e","ssdeep":"","tlshash":"a0f05c0871fd64441173b07a2b7f4e44391e302b90449b04fc5e9ae84fa0178ba77d4f","size":611,"data":"","first_seen":"2026-07-04T06:36:32.869769Z","last_seen":"2026-07-04T10:50:44.983977Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":true,"md5":"3973e401ff1323b7f16ededea41d7e1e","sha1":"70af2ba8df8a5ee6412d440e33c45a18765a4380","sha256":"ac4f364a25abf91daa12b2943a46104aa67fdf29da2ab2012c9e09c396fcd117","sha512":"e6d4de53cfb33b64461cd79acda65a98aa38b067dbca63af8a9af297914be74b06f6617e85b164df4addf09c76ab9fd7bc0bea94abcfa913fd69386a8026f543","ssdeep":"","tlshash":"1af046b67818a13d9b8420bfa17bdfdd3123711465418229d146aa887a28e9f8950af9","size":575,"data":"","first_seen":"2026-07-04T06:36:32.871518Z","last_seen":"2026-07-04T10:50:44.985451Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.12.4.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.1.155","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb2d334dabf4902825df4fe6c2298b4b","sha1":"433836da7e015f2eb3fc386817de88b78248f6ef","sha256":"430f36f9b5f21aae8cc9dca6a81c4d3d84da5175eaedcf2fdc2c226302cb3575","sha512":"8cac69ec91c437aa5e126ce683a6bb5c904e44d4c1d084c3d8f8bee85524735e8f09a340257d9a859d5e8e7d69d6e637ecfc728ab9ffd0e30d65b2136c48378f","ssdeep":"6144:pCLfh6nicf8Z5wPTdpM4mDoz1EsnFyyyHh3zOxPnS8kVLkIVfzYAK6k1PC:pfw4mDiTFyA6TVfMAKNZC","tlshash":"e754a4d8f78d112e4232316aad2f52cdbb7cd1b1561054aebd8d497c24a083d42faf7a","size":293430,"data":"","first_seen":"2023-03-07T01:16:13Z","last_seen":"2026-07-04T14:55:04.005232Z","times_seen":4175,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/ui/1.12.1/jquery-ui.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.1.155","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ab5284de5e3d221e53647fd348e5644b","sha1":"75c20acdc6cbc6334fe2b918ab7afeec007f969e","sha256":"4f455eb2ddf2094ee969f470f6bfac7adb4c057e8990a374e9da819e943c777d","sha512":"2462acc237c0063263b52527cfecbc5d4063065c0cd541cd966d9924dec0d9af475184f732c92af9269cb08df993896893eff37ad4b18598ca4b7af7b5f02742","ssdeep":"12288:1vemHFgymzYDdHCcmM2/W/CCeS/QRzbrVDDdRO2:vDdHCcmM2/W/CCeSIVDDdRO2","tlshash":"f3b4a6c9f39c266a867a32595c2e42cdb23c8075d600587fbc5d59dc29a883c43bbf79","size":520714,"data":"","first_seen":"2023-03-07T01:03:28Z","last_seen":"2026-07-04T16:45:19.241246Z","times_seen":16134,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/js/bip39.min.js","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"introduction_type":"scriptElement","is_inline":false,"md5":"7b399d414ef54741d45602c3a43cc91f","sha1":"010ef6e5d3634db071b104665530b02a7612f62d","sha256":"1e59fd59f76707ad17b53dfda30a5aed2428c60e87b893de842cd5031e1a2694","sha512":"f5d97a3d62f5d01e1e5cb34ff851fa5af3caac8d2cfa9b7dfbf7a66e09ed260a49995806fb5afc05dbbafca2095afad60ad0b645e3f12de9a4d2f69bc2756ea5","ssdeep":"6144:+Y+EnHdqi7NahxV1sQCkfzi0sCwZGfty7:+Y+WqY47s3k+0sCwZGfty7","tlshash":"4494f59009440e7c53e891f4c9eb31701cb8ce36848dfebaf49ee5960859a56f46f72c","size":424134,"data":"","first_seen":"2024-02-11T15:29:56Z","last_seen":"2026-07-04T10:50:44.982413Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"adclickja.com/js/k.min.js","fqdn":"adclickja.com","domain":"adclickja.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.779Z","timestamp":1783162217779,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/k.min.js HTTP/1.1\r\nHost: adclickja.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T19:30:46.744279Z","times_seen":16982847,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXW3I6Li01BKofAnsSUYevIWzgPDA.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.795Z","timestamp":1783162217795,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXW3I6Li01BKofAnsSUYevIWzgPDA.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/jquery-autocomplete/1.0.7/jquery.auto-complete.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.378Z","timestamp":1783162217378,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 12 May 2026 03:46:57 GMT","end":"Mon, 10 Aug 2026 04:46:42 GMT"},"fingerprint":{"sha1":"95:12:1E:0A:F6:69:8B:FC:A0:08:DA:67:1A:A4:D1:9D:87:F5:E9:07","sha256":"F3:4A:39:63:C7:6A:CE:66:1A:B4:62:2C:E9:92:82:9A:81:78:1B:CC:3F:D5:2D:0A:6D:D6:89:D9:F6:66:7B:BC"}}},"request":{"raw":"GET /ajax/libs/jquery-autocomplete/1.0.7/jquery.auto-complete.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 252\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\nlast-modified: Mon, 04 May 2020 16:11:45 GMT\r\nvary: Accept-Encoding\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/r2\r\nx-cdnjs-cache: HIT\r\ncf-cache-status: HIT\r\nage: 25204\r\nexpires: Thu, 24 Jun 2027 10:50:17 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=isoUexUAkM1WcFRKBg9NamuHFxyPnUkDnPCELZ8WmrqZ2Z3qWp31bX8jqpGlWMx5iOF%2B%2BY7E5pxb%2BxHrMkJ%2BKlaZ%2FL9BVLDgDH3%2BUZHGR5YbeuioDMZTInm8h96EtutwPi58es4Z\"}]}\r\ncf-ray: a15d9172bf4376ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":653,"size_decoded":1249,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"dc89579bab8bd214b268c9e8ce2c176e","sha1":"8508b03208d4edce4ee5367d3daa7b8559168264","sha256":"6d7fab9e736b5a64ab2fd063444bc8737b54f6e0a559c2a6a04149d952a75017","sha512":"baaf107070694fc5507167f0ad5707fe7fc1e842c3c0a01d5f84bf237ad84b062574b553b3b888236a7a89e182335dd04cf10a66f22d68d2818a7f7fddc8cf02","ssdeep":"","tlshash":"74f0dd3373202101a2cb87a87f47a74e82340956f256793c3f5eb0148dcdaa44adfada","first_seen":"2023-04-16T07:07:26Z","last_seen":"2026-07-04T10:50:44.95049Z","times_seen":359,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":2,"connect":1,"send":0,"wait":10,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/fc21c9e081cd943f4d4f6799a1ef3446.png","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.404Z","timestamp":1783162217404,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/fc21c9e081cd943f4d4f6799a1ef3446.png HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 47464\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-b968\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47464,"size_decoded":47764,"mime_type":"image/png","magic":"PNG image data, 2000 x 1476, 8-bit/color RGBA, non-interlaced","md5":"5c532b7243182172bbf02dd6300cbe95","sha1":"5f28338c8b05ee81fa7896d33206738d43f63ba8","sha256":"0f294912f968d62acf07ace25c3cc2b50594459dc6382d623f27ace9a2ec8727","sha512":"1a654622f964dfdd5eb9441a544c7e018924d14c0c839f4789a28dd456344a4317a60021f747a48371fc5a34ead439a476544f5d4e9cf4cb486baee48f276a5d","ssdeep":"768:0aiztUcNhEThKOfM4QGnTjWKrlSgtkXdJtWC/wsWKrX88qKoJ6LCxuw+QV7RVO:kzNHET7fM4QgjWKrlBtk7tF4sB8lsmxy","tlshash":"f52329b565705e9afe6046f689a30b0ca739011092a31b1b0b99f615bddbf05bfbcf40","first_seen":"2026-07-04T06:36:32.863659Z","last_seen":"2026-07-04T10:50:44.951116Z","times_seen":2,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":58,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/recovery-sheet.svg","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.411Z","timestamp":1783162217411,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/recovery-sheet.svg HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-11f3b\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":73531,"size_decoded":21286,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fa81413fb7e6c783700ab12690fc2beb","sha1":"75cadfbaf45d7928086fd28ad13ed540d33e4ff1","sha256":"ee64a3435cbdf13d32fb6c0d6d8e2cd1bb43d3212d3286ce092844c636be9ea2","sha512":"1433179b9658fd2f06ec25c05c43d2433206531e1e4b733b17206724133bd6a2adc00ecacfaf6737fa940bf8e0284450ff7ec32b6e4d3ac69262e4908edb9fa7","ssdeep":"768:1NA9V6cUuMtO+09sxqqXfxupVGMCFlYQn7Jdau2M65ZNF0TV8smI3lgNsLWLhzZk:nq0XfxVvm6l8sCdlDIT2NwD","tlshash":"97736fdcaf2b5b9845cc97d46d1153a2bf1ba02e57060be1c055ef32302fd5eca4a8da","first_seen":"2026-07-04T06:36:32.848024Z","last_seen":"2026-07-04T10:50:44.952194Z","times_seen":2,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/ledger-logo.svg","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.414Z","timestamp":1783162217414,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/ledger-logo.svg HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-9c4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2500,"size_decoded":1332,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fe86dfd8249532c2906de25c23491cb8","sha1":"aadcc17d5acb50389365efc9e20abcb4f00d5fcd","sha256":"19847b588621d017e5d09ca608c0ab6f17b13c10df0c6d2f8e2749f4aa96faae","sha512":"06e0bba70b0314b50fc752861ba1283562108af242949aaf27a931d5aebede5c1cc30c044179862db598c71aaa14e040d101a31c18bd702bab8096de697171e9","ssdeep":"","tlshash":"c851177293984ef6a07107514b6513563b7153e3736903c5bb4f9da07f029b28c6acd4","first_seen":"2023-11-16T03:58:14Z","last_seen":"2026-07-04T10:50:44.953422Z","times_seen":3,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXQ3I6Li01BKofIMN44Y9vKUT8tDnti.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.511Z","timestamp":1783162217511,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXQ3I6Li01BKofIMN44Y9vKUT8tDnti.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXW3I6Li01BKofAjsOUYevIWzgPDA.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.513Z","timestamp":1783162217513,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXW3I6Li01BKofAjsOUYevIWzgPDA.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.519Z","timestamp":1783162217519,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 14380\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-382c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14380,"size_decoded":14681,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14380, version 1.0","md5":"33543c5cc5d88f5695dd08c87d280dfd","sha1":"600db9374e47e4f73a59ccc0a99bcc42f4a3e02a","sha256":"9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52","sha512":"131afce4ceca8e606f46ba8bede1a7d84793c04aa507e09fb0d88f0fb5e49dff61c70a739a279af185c8c0d2f937761d4d70dc9069f3771ef7a13448e2d1230d","ssdeep":"384:V9e9MoSnw455BJzE0wBQSBUjJWpKlsyIyY8lQGSsrtAvHM:V9e0wK5BJVR9C6sKVlQcJ2M","tlshash":"2652e10e7b5aaf08f555d7ef1edca37964f02cad0f60474da21fc91b7601479b421988","first_seen":"2023-04-11T14:14:03Z","last_seen":"2026-07-04T18:56:25.207727Z","times_seen":21996,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXV3I6Li01BKofINeaBTMnFcQ.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.788Z","timestamp":1783162217788,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXV3I6Li01BKofINeaBTMnFcQ.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.506Z","timestamp":1783162217506,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/fa-solid-900.woff","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.631Z","timestamp":1783162217631,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/fa-solid-900.woff HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/all.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXQ3I6Li01BKofIMN44Y9vKUT8tDnti.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.792Z","timestamp":1783162217792,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXQ3I6Li01BKofIMN44Y9vKUT8tDnti.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":55,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/wallet/favicon.png","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.859Z","timestamp":1783162217859,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /wallet/favicon.png HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 425\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-1a9\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":425,"size_decoded":722,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced","md5":"3ee3dfa9e89fdde9ade665549e3cdc3e","sha1":"63a30452fc9d64fcb6063d904bb1e11612d79fa8","sha256":"46fdf38097c0ee8e27abca13aabd40a2dcc3ca5aa7322e2c6a0770c683fce544","sha512":"3643b38595445e50b1a5bf08963505ad2f917d72ec0eac8219b8c15e76482ff83637acf6895e2242b4b32e882b9ab9de8355142763556f5a0b6456030a3f7f21","ssdeep":"","tlshash":"04e023e4564a9031cd0f12936d734d50d1520e5846dc2959f78de81807bdc44f4f1c13","first_seen":"2023-11-16T03:58:14Z","last_seen":"2026-07-04T10:50:44.954633Z","times_seen":4,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/css/sb-admin-2.css","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.183Z","timestamp":1783162217183,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /css/sb-admin-2.css HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-33af3\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":211699,"size_decoded":31437,"mime_type":"text/css","magic":"ASCII text","md5":"66071c1e68823fff13bb1e7b52467780","sha1":"c2f5a908668a88323a8f3686082a917afd0175c4","sha256":"7bcfe560fe6499da9377aa2e53a002ac4c73f6f5714afa3de032ba93625abb8b","sha512":"add81eaaefc1b2fc035a57557770174eec9b68b4a0deb64d43a54c95d2e53036caad948de0763eebf74a7c385dc051944001ebf09e4db1089baf3f90feacc877","ssdeep":"1536:hni8SeQSsSEy9KbPyymaXovU8P0N1UJrJmFLVRXQFTitSbAQQFntVYeKSzje+KTT:3psbPyym2WUDXQKxNaC/zDL4iDF4jV","tlshash":"8724864dfdf11904307b92ac6496e7e57b6d4086c61ece7ab6e22128df4d3c54cb2e88","first_seen":"2026-07-04T06:36:32.857189Z","last_seen":"2026-07-04T10:50:44.955234Z","times_seen":2,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXW3I6Li01BKofAnsSUYevIWzgPDA.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.515Z","timestamp":1783162217515,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXW3I6Li01BKofAnsSUYevIWzgPDA.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/fa-solid-900.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.517Z","timestamp":1783162217517,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/all.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem5YaGs126MiZpBA-UN_r8OUuhp.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.521Z","timestamp":1783162217521,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem5YaGs126MiZpBA-UN_r8OUuhp.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 14932\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-3a54\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14932,"size_decoded":15233,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14932, version 1.0","md5":"24f7b0944e9e03a905f9d7701573b2cd","sha1":"c7a9a4c42d3d84f112940645abd416a59eb71c89","sha256":"f677ee2d82dfb11f08175f673cf3f065b0d5e491b4485e01259a492715c746e2","sha512":"445d5f3e6f06cab87d3b87663a2a3c7f86005f008e602aeb8e523ac9b30ff343b7ed6e1413a3bcee1e2d91e569da6a729f9e28cbe5e3184e0e47c257e3fc5c17","ssdeep":"192:VHf+yUnLQ832k9wzi1V0j42uDanFHoXHT7434D3Xy3fLxD8II9dzlxwyTWnOLyQR:h50LDZ9hV0s2ZF4DY18//zg9wU4pYmB","tlshash":"4c62be0580544d90d7ea26e239631dfb91df2438bf8d7e947540ea2ec83178a93b94a9","first_seen":"2023-04-06T16:32:59Z","last_seen":"2026-07-04T18:56:25.215466Z","times_seen":3423,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/ledger-icons-font.woff2?11655333","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.522Z","timestamp":1783162217522,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/ledger-icons-font.woff2?11655333 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 19912\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-4dc8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19912,"size_decoded":20213,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 19912, version 1.0","md5":"dad5ecb87a3f4cc8847eaf11da612b06","sha1":"19eacc23f66a7031cea35e0c39f0e108678b3d13","sha256":"daf76bc8f5172c2837178aea40835a510144c778a22eba1f15b13d104bebfeef","sha512":"52cc5a078cd2a86edbfee49f9274a6e411b4aa3c445d6f8564d1e0ff7d6f60a66a220a2812640063e615545370f634a8e7b7e00141667504f769f86caff815d1","ssdeep":"384:ExIBa5prDIxxj9Hcchg2ijop+kOLqraJIAunlS/z+MnlpGNai0hrLDsbQ5:Cw3j9HcJ2ijor+qGJIHnl++SjGF01UQ","tlshash":"d892e1b2802956c6dc2d0b2d8795d139b42f63c3c9e752cb35602b9a83d65f98df9860","first_seen":"2024-09-19T20:57:55.218003Z","last_seen":"2026-07-04T10:50:44.957166Z","times_seen":3,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.797Z","timestamp":1783162217797,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 14380\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-382c\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14380,"size_decoded":14681,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14380, version 1.0","md5":"33543c5cc5d88f5695dd08c87d280dfd","sha1":"600db9374e47e4f73a59ccc0a99bcc42f4a3e02a","sha256":"9c50a96c859b9beea47b71740bd14e7f69a4df586d015f47434037f8def53b52","sha512":"131afce4ceca8e606f46ba8bede1a7d84793c04aa507e09fb0d88f0fb5e49dff61c70a739a279af185c8c0d2f937761d4d70dc9069f3771ef7a13448e2d1230d","ssdeep":"384:V9e9MoSnw455BJzE0wBQSBUjJWpKlsyIyY8lQGSsrtAvHM:V9e0wK5BJVR9C6sKVlQcJ2M","tlshash":"2652e10e7b5aaf08f555d7ef1edca37964f02cad0f60474da21fc91b7601479b421988","first_seen":"2023-04-11T14:14:03Z","last_seen":"2026-07-04T18:56:25.207727Z","times_seen":21996,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/css/style.css","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.181Z","timestamp":1783162217181,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-5dba\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23994,"size_decoded":1408,"mime_type":"text/css","magic":"ASCII text","md5":"15c58b85dbcb6dde3d792f488f4a173f","sha1":"b954d8f9b9225961bb47bc0b467d095a4116180f","sha256":"4f543a92309278d4099d4ed9857076619110d7045e332cf75b85735aad10ae0a","sha512":"870a174e819e2e6e8311fc59832bd90ab7087dd5ee5e717e8df4254daadad76e5f65f33971e4f6b39160e7edfc4e9eb21026a22417373c541c291ac239c0cde4","ssdeep":"384:m926bUCta2DbpJ+n24bqY1V2yb8mX1H2gbG8ry27bxxG1J21eb1g121Il1fR3fUV:YkAk+W70","tlshash":"f4b24cc0148ba11566473dd367db3d3ade0da205340d8a276bfed950dda7e6b2260f0e","first_seen":"2024-09-19T20:57:55.219456Z","last_seen":"2026-07-04T10:50:44.957736Z","times_seen":3,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/unnamed.png","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.407Z","timestamp":1783162217407,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/unnamed.png HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 40488\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-9e28\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":40488,"size_decoded":40788,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"ad8a9c962daa67c85516fde4fb0913fe","sha1":"0b0ceefc46a88437cc58e0f8964714d4d1dacad9","sha256":"5542c19f4245131dd8460da017d813eb6d3ff9adcfb39d192ffd6c654ce34f56","sha512":"b8ee16d2b47c025635a66383b25bf92ee3747c1cf266d329f765e2a770831415a210070e256d070db7da3e0dd3b702aecf346ba8e62f59c7d2aef45b2cd65aca","ssdeep":"768:qz1d7fp5RI4lM3hKAM2ooI05powP2r9Dl+Z0aUHz7d/cMbbjL:qzfVBlM3hKARpMwPMh+UHz7d/cMbL","tlshash":"8e03f144a42db9a4b652ebac4344fa9dc4ea42d9e9873117f30375d2fc2bc18aa50f1c","first_seen":"2026-07-04T06:36:32.835815Z","last_seen":"2026-07-04T10:50:44.958311Z","times_seen":2,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/ui/1.12.1/jquery-ui.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.1.155","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.384Z","timestamp":1783162217384,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 20 May 2026 00:00:00 GMT","end":"Fri, 04 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"DE:F8:0F:C4:8F:BC:F5:01:B1:66:91:CC:15:DC:D8:6E:5D:2F:45:4E","sha256":"05:8E:2E:14:85:E2:41:28:F5:18:A4:37:49:31:2B:0E:24:53:64:3F:02:15:BE:63:EF:F4:B8:53:5A:8B:6D:29"}}},"request":{"raw":"GET /ui/1.12.1/jquery-ui.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-7f20a\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\nage: 2574320\r\nx-served-by: cache-lga21932-LGA, cache-bma-essb1270064-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 76726, 14527\r\nx-timer: S1783162218.641676,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 124434\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":520714,"size_decoded":125076,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1002)","md5":"ab5284de5e3d221e53647fd348e5644b","sha1":"75c20acdc6cbc6334fe2b918ab7afeec007f969e","sha256":"4f455eb2ddf2094ee969f470f6bfac7adb4c057e8990a374e9da819e943c777d","sha512":"2462acc237c0063263b52527cfecbc5d4063065c0cd541cd966d9924dec0d9af475184f732c92af9269cb08df993896893eff37ad4b18598ca4b7af7b5f02742","ssdeep":"12288:1vemHFgymzYDdHCcmM2/W/CCeS/QRzbrVDDdRO2:vDdHCcmM2/W/CCeSIVDDdRO2","tlshash":"f3b4a6c9f39c266a867a32595c2e42cdb23c8075d600587fbc5d59dc29a883c43bbf79","first_seen":"2023-03-07T01:03:28Z","last_seen":"2026-07-04T16:45:19.241246Z","times_seen":16134,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":1,"connect":9,"send":0,"wait":9,"receive":4,"ssl":240},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/XRXW3I6Li01BKofAjsOUYevIWzgPDA.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.793Z","timestamp":1783162217793,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/XRXW3I6Li01BKofAjsOUYevIWzgPDA.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/style.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 2898\r\nvary: Accept-Encoding\r\nlast-modified: Thu, 25 Jun 2026 10:36:22 GMT\r\netag: \"b52-65511902e8303\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2898,"size_decoded":3165,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (634)","md5":"f01ba522c3539135df33250082846848","sha1":"af31de06cf3d07cf83f104af8755b0cc5222ffc6","sha256":"2e8deb28946a6b41ccb927eaa43bbaa78ea82cef39a40638f2e5afa8e90e73ca","sha512":"5ca1b1d3c6f8e1948574a743bd6f58d9f430f9a576c9e656958dda81546a6b0baf0c02ff1b084640351a2bc44ba644e0f671aef0e2ff30981feec2af47764ee6","ssdeep":"","tlshash":"08515194c71c649fd35e24e6293e22c0282f8cb669a3ce7bbc77b174d6c800c87395a5","first_seen":"2025-04-07T04:58:47.339843Z","last_seen":"2026-07-04T18:48:41.231906Z","times_seen":6979,"resource_available":true,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":54,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/ledger.svg","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.406Z","timestamp":1783162217406,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/ledger.svg HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-9b8\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2488,"size_decoded":1318,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"aa4202ccfb4e64e0275e25987e983bd7","sha1":"1cfa877101679ca81bda64ae970657b73213b4e0","sha256":"369f7b86ceaef7e85fd3aa2ae850fc4213143f1a88093c4017e2534d8c31af57","sha512":"e86060a03f7ac830f37a8117999ad3124a35893befc88efdec1ebf0716335e09c492ecbad612d195dc91dae96fd351a993079e4847369ba82caf6e1318381e62","ssdeep":"","tlshash":"ce51f67293984ef6a06107514b6513563b7143e373a903d6bb4f9da17f029b28c6acd4","first_seen":"2026-07-04T06:36:32.846742Z","last_seen":"2026-07-04T10:50:44.960378Z","times_seen":2,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/images/ledger-nano.svg","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.412Z","timestamp":1783162217412,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /images/ledger-nano.svg HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-1927\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6439,"size_decoded":2526,"mime_type":"image/svg+xml","magic":"ASCII text, with very long lines (2824)","md5":"bbd2950919c0c70a97f2b52fbc55d3e6","sha1":"3180ba8787a9ea056f6ec5ff0114f4176aa20db0","sha256":"27978691193fd01061eb5e15fa1799f45796145cfc99657563607ace7c30b14e","sha512":"a2c450b95cc20b7682b8b774588130b12c502fcfd18007035ef3c01e985bec81eee42e378ff1495e61fabec6b921bcc20ac47a271bed67dbc1d88a6aa4a26c0a","ssdeep":"96:vAxsU0zK4yBQTI8ByXer5nrwvsfq3VY5yl3RopcfR5578IEe:4Vfyr5bfuVY58ee4pe","tlshash":"4dd11bcc603761e9fc81c61ae2c43247692664e777224322fbfe091a7f198da05b79c7","first_seen":"2026-07-04T06:36:32.86544Z","last_seen":"2026-07-04T10:50:44.962169Z","times_seen":2,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem6YaGs126MiZpBA-UFUK0Zdc0.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.524Z","timestamp":1783162217524,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem6YaGs126MiZpBA-UFUK0Zdc0.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 13780\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-35d4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13780,"size_decoded":14081,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13780, version 1.0","md5":"b61a9055d92ac56c15cacf4271d4f072","sha1":"b908b01ccf478e0a72f8c6fbcfd5c31a6c61ba36","sha256":"da407a15b1ea0c1b4bb774bd77bb608d6b1c90397b5a75b8895bbccfda5feb63","sha512":"6d529369b406a1063df89f570be0dadd0d0fc9bbfe0380f894121ab91b7b50d1beae694c8c920da01391a57f9665929b8ca3b0806aa24e55d0deb6377592d55b","ssdeep":"384:Fn0nqDX1NzIcg96kcFze6sw8dub+kWy2b9Y5v5T:yyX8V67FIw8uzxL","tlshash":"2552d031f5b674acc2658f3878f3dc683808d907cb1ae8cb6b51989e49f66230678d4d","first_seen":"2023-04-09T13:18:09Z","last_seen":"2026-07-04T13:54:27.946415Z","times_seen":9333,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem6YaGs126MiZpBA-UFUK0Zdc0.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.800Z","timestamp":1783162217800,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem6YaGs126MiZpBA-UFUK0Zdc0.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 13780\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-35d4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13780,"size_decoded":14081,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 13780, version 1.0","md5":"b61a9055d92ac56c15cacf4271d4f072","sha1":"b908b01ccf478e0a72f8c6fbcfd5c31a6c61ba36","sha256":"da407a15b1ea0c1b4bb774bd77bb608d6b1c90397b5a75b8895bbccfda5feb63","sha512":"6d529369b406a1063df89f570be0dadd0d0fc9bbfe0380f894121ab91b7b50d1beae694c8c920da01391a57f9665929b8ca3b0806aa24e55d0deb6377592d55b","ssdeep":"384:Fn0nqDX1NzIcg96kcFze6sw8dub+kWy2b9Y5v5T:yyX8V67FIw8uzxL","tlshash":"2552d031f5b674acc2658f3878f3dc683808d907cb1ae8cb6b51989e49f66230678d4d","first_seen":"2023-04-09T13:18:09Z","last_seen":"2026-07-04T13:54:27.946415Z","times_seen":9333,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":46,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/wallet/index.php?lock=091","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-04T10:50:16.474Z","timestamp":1783162216474,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /wallet/index.php?lock=091 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:16 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 13280\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"jQuery UI:1.12.1","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]},{"name":"jQuery:1.12.4","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":96191,"size_decoded":13477,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators","md5":"820cb2ffb44fa224bf470a8171ef7ac9","sha1":"86fa9a23e986b2371092a3362b6c84052abf8174","sha256":"7420c541a7be759aeffd0065f364cb6957679439cb711352135b455ca886811b","sha512":"fd1991c58d7b28547a692103ee6a72b92e702a5dc78a3c043fd90d60030cba614ae6c41b92fdcf063b2005ccb8132af0a48e6702575c15b5ec2e00c295012498","ssdeep":"384:gxsOq/jVy0HwbFcXDZDJ5lmAdgrmFqPI9C9jJl69yjmt7fex4vwOkt4im4uHa:gxA9gIqPJ1RmFfymwVDzaa","tlshash":"fc93926944c920360173a654af56a715ff528113c745a8653bfd23abcff7e00c9a3b9c","first_seen":"2026-07-04T06:36:32.828897Z","last_seen":"2026-07-04T10:50:44.964925Z","times_seen":2,"resource_available":true,"data":null}},"time_used":425,"timings":{"blocked":-1,"dns":261,"connect":19,"send":0,"wait":53,"receive":20,"ssl":71},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/css/all.css","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.180Z","timestamp":1783162217180,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /css/all.css HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-dc8f\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56463,"size_decoded":12571,"mime_type":"text/css","magic":"ASCII text, with very long lines (56277)","md5":"ee5e8b10fa07dee25dc2f8fbab188f14","sha1":"3ca8a514a5d3ff15c16987dae9e2b73a69fad8f3","sha256":"a7401b13c90f937fd0abd2f4fd30a7d86eaf355a63c3bdc7c52dd87864784b24","sha512":"951d5180234c54f8b0b7f270771889fe54f036962709325f042562e28d0f04a3d5634d6735f3af1f511e9eda813ca8361632a02b977a8855935b3d69060e8b45","ssdeep":"768:8EC31sPizPq4/vBUAUHJvkQCg/xMQyjJrX759sGZQzB:8ETPUC4/pMHBBC8gd7nsD9","tlshash":"49430bb8e54c01c9a732c44fbf82b2bc61b6f73de5914d95f00e591c2ad26a811c5fba","first_seen":"2023-04-09T03:12:17Z","last_seen":"2026-07-04T10:50:44.975289Z","times_seen":121,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/js/main.js","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.388Z","timestamp":1783162217388,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-3c64\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15460,"size_decoded":7558,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (304)","md5":"e73a9d3be1f087fae74f24549c39b927","sha1":"eead426fe2acf87d60dea96b6dc53c3ef68b64db","sha256":"b7ec09043361e4e2695bdfbb167e7a0ba210760e05d60b3c35a7b5261420336e","sha512":"aa38ce3f18f87078e3b6660598b2e7d870f061e724d8191d209c0da62aefc59b666c3ca86d049cdd868f7aa3c0deab8192074b91c7aa20bf2f767d8b83fb0f7e","ssdeep":"384:9vLAog/I1wdsExXxigaSUvRj5pxbqVZL3P:9vLAD/I1axBigI7pxel3P","tlshash":"61623b3ca3b0343bead7665e8cce3f01aa004d335e059894b55d57841f4bc8acb29e6b","first_seen":"2026-07-04T06:36:32.861234Z","last_seen":"2026-07-04T10:50:44.976441Z","times_seen":2,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":72,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/mem5YaGs126MiZpBA-UN_r8OUuhp.woff2","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.799Z","timestamp":1783162217799,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/mem5YaGs126MiZpBA-UN_r8OUuhp.woff2 HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/css.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 14932\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-3a54\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14932,"size_decoded":15233,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 14932, version 1.0","md5":"24f7b0944e9e03a905f9d7701573b2cd","sha1":"c7a9a4c42d3d84f112940645abd416a59eb71c89","sha256":"f677ee2d82dfb11f08175f673cf3f065b0d5e491b4485e01259a492715c746e2","sha512":"445d5f3e6f06cab87d3b87663a2a3c7f86005f008e602aeb8e523ac9b30ff343b7ed6e1413a3bcee1e2d91e569da6a729f9e28cbe5e3184e0e47c257e3fc5c17","ssdeep":"192:VHf+yUnLQ832k9wzi1V0j42uDanFHoXHT7434D3Xy3fLxD8II9dzlxwyTWnOLyQR:h50LDZ9hV0s2ZF4DY18//zg9wU4pYmB","tlshash":"4c62be0580544d90d7ea26e239631dfb91df2438bf8d7e947540ea2ec83178a93b94a9","first_seen":"2023-04-06T16:32:59Z","last_seen":"2026-07-04T18:56:25.215466Z","times_seen":3423,"resource_available":false,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/css/css.css","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.185Z","timestamp":1783162217185,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /css/css.css HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: text/css\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-469e\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18078,"size_decoded":1302,"mime_type":"text/css","magic":"ASCII text","md5":"a03ffb54cf57b8bbd5437e1f4488ff24","sha1":"be4b47f63f740da70a43c555b569665dcf29dd6c","sha256":"b110a0f154d0bcaeb6e29cc3a789b9941c52f4f8747aa4d0f1bbfec84ef60aa6","sha512":"f751ab35a8cd534da0bba8e3b06db79b6065055bf5b1b6972b192573a1a45080a8e623650a3af8d0a5a09ed28ebda0c2f3a918ba71b32c0c293f8fe478f8e4dc","ssdeep":"384:+iOgn+97xktOVgl9sU8WOkLi9261oiOgn+97xHJLu5tprkj:R","tlshash":"01826e90189b20259a431dd77bdf3e35ce0da925300ec66b1bfe68499dd6e2d13b038e","first_seen":"2026-07-04T06:36:32.832435Z","last_seen":"2026-07-04T10:50:44.979334Z","times_seen":2,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":84,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.12.4.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.1.155","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.383Z","timestamp":1783162217383,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Wed, 20 May 2026 00:00:00 GMT","end":"Fri, 04 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"DE:F8:0F:C4:8F:BC:F5:01:B1:66:91:CC:15:DC:D8:6E:5D:2F:45:4E","sha256":"05:8E:2E:14:85:E2:41:28:F5:18:A4:37:49:31:2B:0E:24:53:64:3F:02:15:BE:63:EF:F4:B8:53:5A:8B:6D:29"}}},"request":{"raw":"GET /jquery-1.12.4.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-47a36\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\nage: 2249671\r\nx-served-by: cache-lga21970-LGA, cache-bma-essb1270064-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 21214, 3459\r\nx-timer: S1783162217.420431,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 87176\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":293430,"size_decoded":87816,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"fb2d334dabf4902825df4fe6c2298b4b","sha1":"433836da7e015f2eb3fc386817de88b78248f6ef","sha256":"430f36f9b5f21aae8cc9dca6a81c4d3d84da5175eaedcf2fdc2c226302cb3575","sha512":"8cac69ec91c437aa5e126ce683a6bb5c904e44d4c1d084c3d8f8bee85524735e8f09a340257d9a859d5e8e7d69d6e637ecfc728ab9ffd0e30d65b2136c48378f","ssdeep":"6144:pCLfh6nicf8Z5wPTdpM4mDoz1EsnFyyyHh3zOxPnS8kVLkIVfzYAK6k1PC:pfw4mDiTFyA6TVfMAKNZC","tlshash":"e754a4d8f78d112e4232316aad2f52cdbb7cd1b1561054aebd8d497c24a083d42faf7a","first_seen":"2023-03-07T01:16:13Z","last_seen":"2026-07-04T14:55:04.005232Z","times_seen":4175,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":1,"connect":9,"send":0,"wait":9,"receive":12,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/js/bip39.min.js","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.387Z","timestamp":1783162217387,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /js/bip39.min.js HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/wallet/index.php?lock=091\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\nvary: Accept-Encoding\r\netag: W/\"67bada6c-678c6\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":424134,"size_decoded":122478,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7b399d414ef54741d45602c3a43cc91f","sha1":"010ef6e5d3634db071b104665530b02a7612f62d","sha256":"1e59fd59f76707ad17b53dfda30a5aed2428c60e87b893de842cd5031e1a2694","sha512":"f5d97a3d62f5d01e1e5cb34ff851fa5af3caac8d2cfa9b7dfbf7a66e09ed260a49995806fb5afc05dbbafca2095afad60ad0b645e3f12de9a4d2f69bc2756ea5","ssdeep":"6144:+Y+EnHdqi7NahxV1sQCkfzi0sCwZGfty7:+Y+WqY47s3k+0sCwZGfty7","tlshash":"4494f59009440e7c53e891f4c9eb31701cb8ce36848dfebaf49ee5960859a56f46f72c","first_seen":"2024-02-11T15:29:56Z","last_seen":"2026-07-04T10:50:44.982413Z","times_seen":6,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger.com-weblive.co/fonts/fa-solid-900.ttf","fqdn":"ledger.com-weblive.co","domain":"com-weblive.co","tld":"co"},"ip":{"addr":"154.86.119.179","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://ledger.com-weblive.co/wallet/index.php?lock=091","date":"2026-07-04T10:50:17.690Z","timestamp":1783162217690,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ledger.com-weblive.co","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Thu, 25 Jun 2026 09:38:22 GMT","end":"Wed, 23 Sep 2026 09:38:21 GMT"},"fingerprint":{"sha1":"52:49:42:9B:EE:E3:C5:0A:AA:E3:F8:32:54:10:E3:BC:7F:5E:FA:AD","sha256":"9A:2E:C9:10:AF:4E:C1:B1:F6:AB:F1:59:11:68:96:A7:47:5E:DC:7C:9A:06:84:4E:52:2F:A7:1D:A7:CF:87:D8"}}},"request":{"raw":"GET /fonts/fa-solid-900.ttf HTTP/1.1\r\nHost: ledger.com-weblive.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://ledger.com-weblive.co/css/all.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 04 Jul 2026 10:50:17 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 193780\r\nlast-modified: Sun, 23 Feb 2025 08:21:00 GMT\r\netag: \"67bada6c-2f4f4\"\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":193780,"size_decoded":194097,"mime_type":"application/octet-stream","magic":"TrueType Font data, 13 tables, 1st \"FFTM\", 28 names, Macintosh","md5":"2aa6edf8f296a43b32df35f330b7c81c","sha1":"91b40a8f284159d9fff81dc522670ef68d562682","sha256":"0389b061db08d406704c9bb8819e09c3558ac956287b3e9da8e6645a79d528ea","sha512":"7fdb75e5a505c3a78e28abd6f996deefb53ae6c2a86fd4578007f27ff0a63742c564df0b5bf99a69273c1b00a8e7f5ab56f42039767dcee9135e190bc9e2591d","ssdeep":"3072:I4twS2HnhbTOMjZUpyL175vPmazQXYIvbVaaKL6XDihFle5PZcxehAMQ9e:TtwS+nhqFpA7FmMQIIvbQAXWhFo5QMt","tlshash":"db143cedb69fcf67c18687bcafd0bd3221e05f10325237e2be46951e20669c494f056a","first_seen":"2023-04-09T22:41:11Z","last_seen":"2026-07-04T10:50:44.983212Z","times_seen":342,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":38,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"ledger.com-weblive.co","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"ledger.com-weblive.co","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}}]}
