{"report_id":"604de1e5-7b1b-4fa6-a0da-53427ab3c39f","version":6,"status":"done","tags":[],"date":"2026-06-02T09:24:30Z","url":{"schema":"http","addr":"ledger-how-to-use.com","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":0,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"https","addr":"ledger-how-to-use.com/","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"title":"Ledger官网入口｜硬件钱包购买咨询下载售后与正品验证｜沣泽懿","dom":{"size":35024,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (492)","md5":"42b3be3a3f3cbf1b2de8408251b2fe2c","sha1":"79c3548e46aa9896da4ce16afb18e029bf6abbe4","sha256":"7ff36dd391db3346726ae4e2369261dca82238c6dc637c6e68e8bff45d4178e9","sha512":"cd5a83fed560f777217061d4e6af63f41e4393e00cbf78b845d9d7023e67f40c94f55f4f7211c206f39eb49ee6f80f49e1df57e84b11964a141e0210eaad814b","ssdeep":"768:mCd+mCD5Y4T1p4/NJlMTr/aqveo5p0zY/0Ei8RPChNzj:mCd+mCD5D1O/LqZn08ti8RPCh5j","tlshash":"d9f2e93c45f76dda115745c821ba92957ad8d903d8af8340babc1bec4fd5c86ac0790e","dom_hash":"domhashcf47e1bf80dffa691f12dbbed241dfdc","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ledger-how-to-use.com","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":0,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-07T09:24:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ledger-how-to-use.com","ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"domain_registered":"2026-04-27","domain_rank":0,"first_seen":"2026-06-02T09:17:30.137529Z","last_seen":"2026-06-02T09:17:30.13753Z","alert_count":18,"request_count":9,"received_data":172060,"sent_data":4149,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/js/main.js","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"introduction_type":"scriptElement","is_inline":false,"md5":"99c5ac0c7aa0c68b6264da43e93bd48e","sha1":"4c468e69202075c5acc367d7998c8d620458671d","sha256":"4baf6ef9ecfbb506a7def46a9a33e53cac383a7eef8edbbfd36108f094a8addd","sha512":"42d9e426c5f23685897f0ea5227405f3a68d3e85c2fd1236182dd67bbfa9797d66c00ac9bcb835dfa95c5f12cfdab39c23cb3e01544073baf07f6d6115076033","ssdeep":"","tlshash":"9631ac66e97a2a7704fb43d776c76ba475210097b006c8553f7ccd812f82a91acb38e5","size":1806,"data":"","first_seen":"2026-06-02T09:17:34.146953Z","last_seen":"2026-06-02T09:24:30.756961Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/images/wide-banner.webp","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:10.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/images/wide-banner.webp HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:10 GMT\r\ncontent-type: image/webp\r\ncontent-length: 37166\r\nlast-modified: Thu, 21 May 2026 09:48:29 GMT\r\netag: \"6a0ed4ed-912e\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":37166,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1876x750, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2328846423ff6f18284cc5286bebfd93","sha1":"7b91c72243eaa8f138eb521db5cdd2e3b9d3e0ab","sha256":"e957822ef96ceb68a8189762dd061d975398f908851783957437ec05c7b9122c","sha512":"5a50f23026fcdd246d14da64dcd30356efd53d7ce142b95d56baea9dfda265b73b31fc32ba91c270cdfec98bb29010277667f153a3afed7cb71920f037bfe647","ssdeep":"768:vj8rbYPcIcMLf137MAXWDpcFse6H+TEHtoXPoX0Iw4t+BCxxFXsiI38Q:bpcEtMAXWDpPesUUyAEP+c85A8Q","tlshash":"e5f29ddedb4c827a9c6c87ad43da0ab641a647cd110017fa509eeddc77ac3c065bad2c","first_seen":"2026-06-02T09:17:34.142309Z","last_seen":"2026-06-02T09:24:30.754235Z","times_seen":2,"resource_available":false,"data":null}},"time_used":437,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":436,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/images/favicon.png","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:10.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/images/favicon.png HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:10 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 21 May 2026 09:48:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a0ed4ec-f7a\"\r\nexpires: Thu, 02 Jul 2026 09:24:10 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3962,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"3f8a7f481456834a0600569a4d657d8b","sha1":"f6c09000c6698b99476ef3936d95f119f9fa8dbd","sha256":"87cf5b4875e96522d7caf21981863f5b452dcd10ef61819878e297030ae61565","sha512":"67de10cc26cdde57d210a9ff3595c390986db3fae7c06662f5c95b1820b6a48839e8d0dee4bf39594d3e3f50b576e03a80473755029c2c839fce69ff3fe32ce9","ssdeep":"","tlshash":"72815f50760d968bef7997b888831ad639b4cdd7f3aac332251e051e01d4c8e7b23ad4","first_seen":"2026-06-02T09:17:34.143324Z","last_seen":"2026-06-02T09:24:30.754981Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/favicon.ico","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:10.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:10 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 7485\r\nlast-modified: Thu, 21 May 2026 09:48:27 GMT\r\netag: \"6a0ed4eb-1d3d\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7485,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 5 icons, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, 24x24 with \n- PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"822ed1bb3232accdb0b96f12aa1ddef5","sha1":"a45aae40c1349314da8928c33a2cb31fe4e551dc","sha256":"d300d3b251f84e01cd94bed5c107d520d24fed65983b3db8c3a9df9af631a882","sha512":"b2982286e2cfcbd4fac9f227d1097b2139a0d260393ea2474888db571f2d9de4438eda7b099a42391348c0619f40c6f6b50faa8fca95df1ae646d0e4f07a2300","ssdeep":"192:91XZ8yD5zTUGY2Hj2DBdqRz8byx1K6BS5YZBBVzqM1VSr:9VZ8yDpO2DAd0zlqUS5YZBBVzqBr","tlshash":"80f19e83d7a02aedcd35895b6499b15145b239642f53e5992948df3c1f3f6c0b0f0f8a","first_seen":"2026-06-02T09:17:34.14878Z","last_seen":"2026-06-02T09:24:30.755612Z","times_seen":2,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/images/hero-device.webp","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:09.839Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/images/hero-device.webp HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: image/webp\r\ncontent-length: 32764\r\nlast-modified: Thu, 21 May 2026 09:48:28 GMT\r\netag: \"6a0ed4ec-7ffc\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32764,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1873x1200, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"716d46df4af5765f45ecf21de595ceb8","sha1":"2674db21da8aaa63e5bffbc3e63bd782bfa21d15","sha256":"8e2b87be54673e2fcfdef7bf74e802dd2de146b8e97686c31888330f066a0ffe","sha512":"73fe2a9bf47a09d28558b60d631c9c3145a4cc7a5580eb7360e25bd249f0e2b4fc11dff96ebf0c8a9d835254e3bbfac0437f29c1aa5a23cda9586f807f7fa40f","ssdeep":"768:6u1CdqbkN/qfoww9W/yNZCq2cClWi9F4B:r1fU/EPwo/w8cm4B","tlshash":"35e2e1ebcb32d3ee991b7427e306396b9fed1b7473153964001e24b116014db1eada45","first_seen":"2026-04-28T18:19:58.144086Z","last_seen":"2026-06-02T09:24:30.756261Z","times_seen":7,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":263,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/js/main.js","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:09.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/js/main.js HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 21 May 2026 09:48:29 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a0ed4ed-70e\"\r\nexpires: Tue, 02 Jun 2026 21:24:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1806,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"99c5ac0c7aa0c68b6264da43e93bd48e","sha1":"4c468e69202075c5acc367d7998c8d620458671d","sha256":"4baf6ef9ecfbb506a7def46a9a33e53cac383a7eef8edbbfd36108f094a8addd","sha512":"42d9e426c5f23685897f0ea5227405f3a68d3e85c2fd1236182dd67bbfa9797d66c00ac9bcb835dfa95c5f12cfdab39c23cb3e01544073baf07f6d6115076033","ssdeep":"","tlshash":"9631ac66e97a2a7704fb43d776c76ba475210097b006c8553f7ccd812f82a91acb38e5","first_seen":"2026-06-02T09:17:34.146953Z","last_seen":"2026-06-02T09:24:30.756961Z","times_seen":2,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-02T09:24:08.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: text/html\r\nlast-modified: Thu, 21 May 2026 09:48:26 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a0ed4ea-8a71\"\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":35441,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (492)","md5":"95f0b226e973280434fb379dc7dd8405","sha1":"70e4ff99afcecf6526f8e7fd80d8dcd520613eb1","sha256":"5ff4d7e0a8fb505b578347b3e88c36f8df87a7c962fe36fc95f19edc90b993a2","sha512":"0044fc443dc06865923feafb467c61ccbdbfee1560a47c9b6db964d54539d8670f8448ccad616bfa56fa081a35e27c7b42f6775fc15ec1d19f6a1aeea967597a","ssdeep":"768:yCd+uCD5Y4TDp4/HTlMpr/aqveg5p0bY/0IB8RPCh3zc:yCd+uCD5DDOzZqhn0k5B8RPChDc","tlshash":"dbf2f93c45f76dea115744c871ba92967ad8d903d8af8340babc1bec4fd5c86ac0790e","first_seen":"2026-06-02T09:17:34.144256Z","last_seen":"2026-06-02T09:24:30.757658Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1635,"timings":{"blocked":554,"dns":19,"connect":264,"send":0,"wait":526,"receive":0,"ssl":270},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/css/style.css","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:09.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/css/style.css HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 21 May 2026 09:48:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a0ed4eb-4e79\"\r\nexpires: Tue, 02 Jun 2026 21:24:09 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20089,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (8842)","md5":"37647319ea1b3fd4ed2051ba4d600086","sha1":"28941493fe7626e66555babaddb558217e55e7cf","sha256":"6ea70c6c1dfd28265425336033181f07ea1acba079e05cd0fb23d599ccfbd25f","sha512":"b875759c6e2a6ebbd1c457c9f3f17006684f1b6f21728ea11aa0e2df18d12665575ed38d67b89848bacfbaa68161e453fb7dbdd37011990a2b9af51f21d6904b","ssdeep":"384:XFb8ro0JCpEgp1jPU+UVwTugQl/lMlpWY:XFsoImEgp17U+Ug","tlshash":"ff92b6b27154763cb43bd556f5c2b6cf3220a013c66347e8ddf2a1a8c99a0eb07b064e","first_seen":"2026-06-02T09:17:34.1497Z","last_seen":"2026-06-02T09:24:30.758223Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/images/favicon.png","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:09.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/images/favicon.png HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 21 May 2026 09:48:28 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a0ed4ec-f7a\"\r\nexpires: Thu, 02 Jul 2026 09:24:09 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3962,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"3f8a7f481456834a0600569a4d657d8b","sha1":"f6c09000c6698b99476ef3936d95f119f9fa8dbd","sha256":"87cf5b4875e96522d7caf21981863f5b452dcd10ef61819878e297030ae61565","sha512":"67de10cc26cdde57d210a9ff3595c390986db3fae7c06662f5c95b1820b6a48839e8d0dee4bf39594d3e3f50b576e03a80473755029c2c839fce69ff3fe32ce9","ssdeep":"","tlshash":"72815f50760d968bef7997b888831ad639b4cdd7f3aac332251e051e01d4c8e7b23ad4","first_seen":"2026-06-02T09:17:34.143324Z","last_seen":"2026-06-02T09:24:30.754981Z","times_seen":2,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ledger-how-to-use.com/assets/images/series.webp","fqdn":"ledger-how-to-use.com","domain":"ledger-how-to-use.com","tld":"com"},"ip":{"addr":"43.154.193.155","port":443,"asn":132203,"as":"Tencent Building, Kejizhongyi Avenue","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ledger-how-to-use.com/","date":"2026-06-02T09:24:09.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ledger-how-to-use.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 09:33:23 GMT","end":"Tue, 28 Jul 2026 09:33:22 GMT"},"fingerprint":{"sha1":"90:86:06:C2:FA:71:13:43:7D:D7:28:BB:CB:8D:09:CF:50:2B:E5:42","sha256":"9C:19:23:2C:51:CE:D7:51:F7:57:CD:FD:97:66:3C:8E:FB:8D:3D:6E:FC:47:3E:98:23:20:B8:06:43:CE:B2:11"}}},"request":{"raw":"GET /assets/images/series.webp HTTP/1.1\r\nHost: ledger-how-to-use.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ledger-how-to-use.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 02 Jun 2026 09:24:09 GMT\r\ncontent-type: image/webp\r\ncontent-length: 26610\r\nlast-modified: Thu, 21 May 2026 09:48:29 GMT\r\netag: \"6a0ed4ed-67f2\"\r\nstrict-transport-security: max-age=31536000\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":26610,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 900x900, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"8b942563b7287cf89adf73bd34766edc","sha1":"b75400fecc5cb44466bfd52ff90b2b4d7f829d8d","sha256":"33b662a270ca1125f42389a772c99035885dbc28305eef9eae3741aafecaa734","sha512":"94a73ce46f80e98f108e9fd2b10f11dad14d7d774ded71c9301a5fafe30172123372a71292fdb118ac878d1ba30bfb3c478a74cd19737e3357affa19d8c2b7a3","ssdeep":"384:w3sAmjokccSmPjjiN7oUSUjqK7/2jtq816xhWuI46zMN8R1NjxG1puWDh9xM:xAY3ccfLOpoUVq82joZNpNi1NUmCS","tlshash":"9ac2e0b3dd1081e5c71e583c20ec55b1612bfbe9e0712798daa2a226c7cd6678724473","first_seen":"2026-06-02T09:17:34.147909Z","last_seen":"2026-06-02T09:24:30.758843Z","times_seen":2,"resource_available":false,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"ledger-how-to-use.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}