{"report_id":"61d0b249-9855-4752-b9aa-767ccaf0f86f","version":0,"status":"done","tags":[],"date":"2026-06-11T20:20:57Z","url":{"schema":"http","addr":"webtrader.possares-renoyx.com","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":0,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/login","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"title":"Webtrader","dom":{"size":21325,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (6994)","md5":"f13a7f8656c48f570a200765aeddba61","sha1":"729964fb42d5f00f13785633efa380e30de7cf92","sha256":"e29c40a7250a2c49a91879b106acc4338280d4d752a9abf68fb604461ed56aa8","sha512":"5b49462796db6bb19ce4e42086b6cd072f94475dd1c8426b9be0c39e222c02e50c9aef43e268d094134affc45fe76adab00273d2e89dc0ec41635aacf8ceb46c","ssdeep":"192:1dnHaqhJmXoZSvaTsS3wNE3rC8bZpiLi1I1PrPGIWfmFyAdxKqw7r6vVirgevy/E:1CStbOrPJWAyAfnAr8ikevy6YO","tlshash":"0fa2c7222a5a0096713389e119c6b7052c7aa543d3128e6b75fcdd69cfcece6427f72c","dom_hash":"domhash11a30a7fadeee97f7675ad663aae5b34","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"webtrader.possares-renoyx.com","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":0,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-16T20:20:57Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"webtrader.possares-renoyx.com","ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"domain_registered":"2026-02-26","domain_rank":0,"first_seen":"2026-06-10T04:55:47.21248Z","last_seen":"2026-06-10T04:55:47.21248Z","alert_count":33,"request_count":33,"received_data":4231385,"sent_data":16790,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-07T22:18:26.533791Z","alert_count":0,"request_count":1,"received_data":73829,"sent_data":577,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/3654.68719923a6e705c3.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ce924dc21c56a1ad3292f67fece39840","sha1":"1a805e2e29c9b07c51aff92f50613c1536423bdb","sha256":"277bfbb3c93ad65f04378c80652381aafabbf6d64a5055e60ec4f451c62a4563","sha512":"573e21db7726ed2e5c9fc353302478b217c46f89f4e0d0bc04f5aa9e64383479d2301b762cf6dce7e08f3b4b8ef01ea68bec22809899d9a306f3e7a2d26fefdb","ssdeep":"6144:NyA9lluWirEiM3z0zAQL48XdFoFkPAptBR2bmtOgXgTj4YDuEIJ9ade9Z+uYMkAq:j9lluWeEiM3z0zAQL48XdFoFkPAptBRk","tlshash":"6884ca22f3802017415e6243b023174297271aa66d85cdadbe7cade67e69c4d33feb74","size":374923,"data":"","first_seen":"2026-02-11T09:30:36.526635Z","last_seen":"2026-06-11T20:21:03.122632Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/4310.f7ab4f16927a9dbf.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"89b38c213860616a5b250f4260d8c8bf","sha1":"52d6f14b48af569693b2a88ce2aad2a45095c6d9","sha256":"4fa5f3c49dbb4673e1b78d48e9248d7f391e74bb80f8f68edee1d7af9d6648b3","sha512":"13bdf0b4c4403f9453bfe4d5da9084b24ca09929751316863979524a13d1b1d46142e565448db59aaf35f626eb73561615336994b32d00800a755fe87d4b8a9c","ssdeep":"384:5ffpQBXtfSvI5kQ4Y3FTFEdvLWmEdbXNF1JEFFWFDVJ4:5ffpQBXL4Yx4yrXr4","tlshash":"4b9263f2852450dc3395c4024723b2055e1cfe21d56acaadfa9dc84da7d6feea28573c","size":19630,"data":"","first_seen":"2025-11-12T03:41:30.817325Z","last_seen":"2026-06-11T20:21:03.123419Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"eventHandler","is_inline":false,"md5":"7c3c3ddeb80438dcbb3d081d2d00e152","sha1":"5a4016732ee72ec77b4f6ab17047bcea6d2ea34d","sha256":"321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187","sha512":"b252f7dc795284fe8ce404711809130d8e16670a8e49b271f9a24b04a542a0fccb7a8c7238c12b37db35fe73a2fbf1cdb374468574db4e6d39975a17dca547a3","ssdeep":"","tlshash":"de6000f0003000000003c30000330cf300000c0f00ccc30cfc0000c000c00000000c03","size":16,"data":"","first_seen":"2023-04-10T15:57:29Z","last_seen":"2026-06-12T06:47:47.900806Z","times_seen":303526,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/2347.f29693ee0d302577.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ba2c13eac0e88b57bb39352cdf76f165","sha1":"e0adab179abb8a6ad59cc557a043e182361a10b9","sha256":"772eb109840fb67a06dcfe14c5661bc3d46556cdd0f4206ab9555fbea3739878","sha512":"fa9ecf9a88e03dea10e6433a65e6fd262c82d36df03575f98cbf9cb06e46d8076898dbb710fb7782c50f29552ba417ea253f207d1d6005daa0652ca4a78e473d","ssdeep":"1536:FDyrK2JFXbMLJYHF1kuMll529CAKEjcmpV5rmO0z8QDP:MVFXMIF85O8BXz8k","tlshash":"b453ea49325371214eed4c9ddcf5098ab2254f38a50101edb27e9eed3aedd09b23673a","size":65315,"data":"","first_seen":"2025-11-12T03:41:30.814006Z","last_seen":"2026-06-11T20:21:03.132127Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/388.c5961fcbb3e7466e.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"aa304448138bfb837d5c31c64f73d8b2","sha1":"0af73e9085d07636bc8d23859a02e00f3fa4227d","sha256":"de804b8cf58dc814514db13d73c679ba0b525200865bfba8136b5c4b724c1b71","sha512":"873643e7106d381ef30d7f20311a5bc1ca8ebc32218efd87c715f142dbe75c479f1a70079553c5cda6f0ce301e02c20d0ee4f8e79e807ecd28c92b4dfcec777f","ssdeep":"384:uTVNZSYxhM9B+UZqYLVyeFFPS+7qZGElIM9BybawYmlXU2PJ:cVXnmF3VmZGElIM9BybbYmlXU2PJ","tlshash":"7382b7ae3369b93a46dd4995e076860bf71b2c48900b006cb67c9cdf196cc44b2b6f7d","size":18109,"data":"","first_seen":"2025-10-10T21:54:22.814435Z","last_seen":"2026-06-11T20:21:03.118388Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8692.fd07f664154c5e8c.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"efe5a73c44745c8acde16c5934b8638b","sha1":"e6d80d221f87420289b6f9caf8a56e81c8c454cd","sha256":"1114e51c25fc761104db6d2d06df28b3ba322b37c383183883db6367f3fe994f","sha512":"a5d664289783d2755d5200b5b3c6d831f6b58f73fd46bc3cf0c7acc82c7de7159cd1e4a29406d000cbbeb568c118e9c4048f2318fe59ba1ccd530eff592aa0b7","ssdeep":"1536:76khn2cuOKPczJhdTiDyU23WAnxtNqFrk+SPes88oROCGxHrm6IkjT9lVcPZVL:dhn2cujL+fnxtklk+wx88o+rAL7","tlshash":"f1340a12f895a0e102eb6458a76f4e02a62c1d46290ed498f3dccdda77dd84c726bf3d","size":249382,"data":"","first_seen":"2026-02-11T09:30:36.545231Z","last_seen":"2026-06-11T20:21:03.113575Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8888.a36f7263afdacf0f.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0dcc720502b3f5cfe3349e565d670e1","sha1":"ad4d594c74382150f5d83a8a962af97b6d53c2f7","sha256":"a451d955bc4621f6d8e830af2551d58188ef817006f2089116c82e2d8646bf85","sha512":"2f87c3433b1fa75c51f79e2bfef259ad70849cbc420d143e119f9b8693842187417a2714002220383471d904499af28cccaee002e2095ab14e1ed56bc389b876","ssdeep":"768:F3oMy/JJm/aixoWNpfIFBhWtUh2Q2jspO/trGQLkXfEQpan8jCbM:CmiixpMqtovABnsU8j1","tlshash":"aae2f7f2853040e933b2c04242673606591cfe20d91acd58f6ae9d9d7be9f8d6297b3c","size":33845,"data":"","first_seen":"2026-02-11T09:30:36.523741Z","last_seen":"2026-06-11T20:21:03.119913Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"3fb7048dd4d250cee15a60c09c68445e","sha1":"103e27385162d66b93ea90f6027c5eb61fc7e2ff","sha256":"8a92c331581571165d2a074acc47d0624181d99a6466486640eb865df3761a81","sha512":"84e54dba72b767fc36910a04d478241a53a83d9d958675fc388ba4604fadb2432e156efb45f4e971c1bf86d40ede67030211c412ff7ae142201de0b74bef5cf2","ssdeep":"","tlshash":"7121af19eabdc4a500a3e4be8767d2082937a0933104e4aa3f4cd985df454958ae75df","size":1120,"data":"","first_seen":"2026-06-10T04:55:52.526649Z","last_seen":"2026-06-11T20:21:03.134221Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"d3ef6998ed45bccb4a4ff194ec77ecc3","sha1":"e9237414aeae1bbc2f5d948481a0f579b650bc65","sha256":"99bbf745405564a787da2a535e6049ae391c2c7ca85571cd14d369018a81efdc","sha512":"749580e2402df3117d9eee5040f139904efd9a9ec92f054b13e1c571fc6ebf55343ced69e053f4e39d5b839027a30af9b54f21272c99e02376d798bea9001679","ssdeep":"","tlshash":"2c01e54e4efd402615b3786f0e1b8101313bc9539559de487fed67900f86d3899e32e4","size":833,"data":"","first_seen":"2026-06-10T04:55:52.52875Z","last_seen":"2026-06-11T20:21:03.134767Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ddaaec4a2d83ad49a12259178edebd2","sha1":"d77f4d4bd6e9b21eddec0ce7bd7a3fb5f2e9b673","sha256":"4a5e8296b98090c968866e5385d59f81a1a76ad372a984c3b73d2c368507e46d","sha512":"ed8ea5c5cebe02e70de663d16db3700f6e1affb7fa45657494cbf9efab42d9bc7ae17b9249ea8ce5dcfb5de4668a48f70d700ab26f8327a39685bef9fd671300","ssdeep":"","tlshash":"d311cb2b453e083b0597da29c64b701527b3b3473208d88e394df6089f9aa45c7a36fe","size":1038,"data":"","first_seen":"2026-06-10T04:55:52.530749Z","last_seen":"2026-06-11T20:21:03.135268Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"f01c3c4d5bdff8284f46baa4044e98ff","sha1":"514c86aa51fac203d5bff101a53f94c9b1342c51","sha256":"afadd7bbc7b3fc0def9b0fbcaf001c50c01b7db3fec4880f57a570ebd956b0c1","sha512":"f3f5bde0c65f6750b38cb6625b808dd18cbf698d52475a61ac71c00ce760d59b84d8058596316c5937d28ad253a90a593edbbb81379a2687b4e3dca45e01c9eb","ssdeep":"","tlshash":"90700000088800202e02088a8a000302a8000e08082020a0a008a32bc0808030820028","size":24,"data":"","first_seen":"2025-10-10T21:54:22.826305Z","last_seen":"2026-06-11T20:21:03.135868Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/polyfills.3115db2c0ec3f144.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c021c8e2a0c83083eee911fefc28402","sha1":"dbe6b91f40030426000a366cc389e9e8009f5064","sha256":"28cce31dd74fdc3c417a433ed3c44a49d908ceeec4447caaee28fbac67fc9144","sha512":"0512d82acd9b681e22aa07a113f680733640a80db2cdeddf8b02a763edb9532183624142c31f9e940f021a01f25c7175ecb6465b1b278d28801a0cdd0f21271f","ssdeep":"768:Oao1hFBEkYWk7lpxhoXzQ8x64QQH5XHb4XchK6mJ19i7bhDgqj8AwOjpVSYo5+L7:JkYWk7lGTFPt1wkintit0T1cvqd2","tlshash":"1c23fac677a2f0668bf661f4a13f850bf2361564785c88e4f258d8e4397908ad07bf2d","size":47636,"data":"","first_seen":"2025-10-10T21:54:22.79596Z","last_seen":"2026-06-11T20:21:03.128525Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/6801.4c1cc07c3bdffe5e.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f4b51cbada9ce17c28b5bbbd2856c5b","sha1":"118a45b66c0a6388613d431fa0a08f3570d6e67f","sha256":"399e8b65e2c7052cdb29f8042f9c67bd0f13148313195303706230e69f16366b","sha512":"ef2bac17036cc7fec4eef6b3a070a1947b6c9f9df006dcdfc7260d46f8355820953242f7bc560fb417c5cdce18f3fc3bfd0d3866cc31bdf92c0896293ee3bec9","ssdeep":"1536:4tmdti67G2LpXJQcz/r3buDf5dEmGVoc6ZP:16rZP","tlshash":"cb43ca579581a4f713e629f0ab6fa50263944d85ad098180f39ccca77bfc58c63a3e7c","size":57228,"data":"","first_seen":"2026-02-11T09:30:36.558532Z","last_seen":"2026-06-11T20:21:03.131002Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/2381.6bdb8222c04f4f70.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ef377f3cbd81741952dc19c0d9f67bb","sha1":"ddd543ba8e9e50e0053dbb133523b313f054da3c","sha256":"ee506791ee0287f785769370c45ed79c90f94d3a670523d7645a0b877006b1b8","sha512":"e36567da16a2e348da680b86e3cb7f05569a2404c54508ef34bae9c166f4e73eb53d5533bfde0772bf3175e6ff044f0d1d615f5b81c88170b22e74b20cfb85b9","ssdeep":"384:ucymEE+RDYWZtY7QUNktDgWMHvTZ8wQ36wI+iuFkhfTQmSreXQ1ZyDghfD9OL3wn:uc6E+RDYWDtD9Mrm6wI+iuFkhfTQmSai","tlshash":"c5b2c6587341747243ca905b907b4607b3394044b187b038f56dccef2ebadeea2a7a79","size":24055,"data":"","first_seen":"2025-10-10T21:54:22.816981Z","last_seen":"2026-06-11T20:21:03.113077Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8499.e99a4fcc6012c716.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"243d90bdd7c884480c2885e91dfe3653","sha1":"69d2065c6b615d608d8a9b88835f368b3540d288","sha256":"cf86cd3892e401f04918285cca00d176011680f1d65d9fb33dcf0b1a51721a84","sha512":"e8057b4d65cd12a3a0433c8c829439b29da8b9d0f104e2ddc72514be6cb4917a8f72e18b60b5f10c4fdc72afefd21bf9666c8e1a3edfc669fcfd4db212eddb95","ssdeep":"6144:KVCCgdFUuEKBpzH+ehV6Q6tffhdx+y6pfttisdjuxT8Qc76HTEtva7nMUFAz/FzQ:zEK7zeehV6Q6Nfhr+y6pfD+MUFAz/FzQ","tlshash":"45843cd63211206603eb50e9547a0247f32b1899a50a44bc77bc8cee6f6dd4c72beb7d","size":375998,"data":"","first_seen":"2026-02-11T09:30:36.525663Z","last_seen":"2026-06-11T20:21:03.117211Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/4927.9d8d53103da50dfa.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"97671a41e75ac4f3a3e54d251d504362","sha1":"475521ed9b5b023b0fb298f1a854bc8123656e9e","sha256":"626252f58c78a366fd24075f97b922f4acda36abe8e0f48d1231ca86762676d8","sha512":"0a08e36d90e0a2ae2dbc72ef72e14cdded31746f38aea620f9dab712c983596ea4fae928346adb48ee42f3ca287b2c0a7f394fc606630e28b91bc0c10f11a535","ssdeep":"","tlshash":"b861960655827466227e48e8df76d540f8fb0e424043ce84fffccd706aa6589b1c7ab8","size":3380,"data":"","first_seen":"2026-02-11T09:30:36.548764Z","last_seen":"2026-06-11T20:21:03.124095Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"3fb7048dd4d250cee15a60c09c68445e","sha1":"103e27385162d66b93ea90f6027c5eb61fc7e2ff","sha256":"8a92c331581571165d2a074acc47d0624181d99a6466486640eb865df3761a81","sha512":"84e54dba72b767fc36910a04d478241a53a83d9d958675fc388ba4604fadb2432e156efb45f4e971c1bf86d40ede67030211c412ff7ae142201de0b74bef5cf2","ssdeep":"","tlshash":"7121af19eabdc4a500a3e4be8767d2082937a0933104e4aa3f4cd985df454958ae75df","size":1120,"data":"","first_seen":"2026-06-10T04:55:52.526649Z","last_seen":"2026-06-11T20:21:03.134221Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"d3ef6998ed45bccb4a4ff194ec77ecc3","sha1":"e9237414aeae1bbc2f5d948481a0f579b650bc65","sha256":"99bbf745405564a787da2a535e6049ae391c2c7ca85571cd14d369018a81efdc","sha512":"749580e2402df3117d9eee5040f139904efd9a9ec92f054b13e1c571fc6ebf55343ced69e053f4e39d5b839027a30af9b54f21272c99e02376d798bea9001679","ssdeep":"","tlshash":"2c01e54e4efd402615b3786f0e1b8101313bc9539559de487fed67900f86d3899e32e4","size":833,"data":"","first_seen":"2026-06-10T04:55:52.52875Z","last_seen":"2026-06-11T20:21:03.134767Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ddaaec4a2d83ad49a12259178edebd2","sha1":"d77f4d4bd6e9b21eddec0ce7bd7a3fb5f2e9b673","sha256":"4a5e8296b98090c968866e5385d59f81a1a76ad372a984c3b73d2c368507e46d","sha512":"ed8ea5c5cebe02e70de663d16db3700f6e1affb7fa45657494cbf9efab42d9bc7ae17b9249ea8ce5dcfb5de4668a48f70d700ab26f8327a39685bef9fd671300","ssdeep":"","tlshash":"d311cb2b453e083b0597da29c64b701527b3b3473208d88e394df6089f9aa45c7a36fe","size":1038,"data":"","first_seen":"2026-06-10T04:55:52.530749Z","last_seen":"2026-06-11T20:21:03.135268Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"f01c3c4d5bdff8284f46baa4044e98ff","sha1":"514c86aa51fac203d5bff101a53f94c9b1342c51","sha256":"afadd7bbc7b3fc0def9b0fbcaf001c50c01b7db3fec4880f57a570ebd956b0c1","sha512":"f3f5bde0c65f6750b38cb6625b808dd18cbf698d52475a61ac71c00ce760d59b84d8058596316c5937d28ad253a90a593edbbb81379a2687b4e3dca45e01c9eb","ssdeep":"","tlshash":"90700000088800202e02088a8a000302a8000e08082020a0a008a32bc0808030820028","size":24,"data":"","first_seen":"2025-10-10T21:54:22.826305Z","last_seen":"2026-06-11T20:21:03.135868Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/7872.19b4e259a06f7ec4.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"1b49f241c63ad019754ab0164a28d15e","sha1":"72282bdde1ec3a9536553c8d1917c20a3286c822","sha256":"dd7270176b0549888849e84f806b92f753ffbdbf36b1e67663f24a0b56c812c0","sha512":"16b4dde098713ef5aac90d7d10b3844d64e72f0e90ede225e66dd5a24fd158807c45f9d743f96002d0c1ccde30acd39e60b676ef375e97999f62abd403ae3666","ssdeep":"384:wGMlO6ZiCAEDGKOm0TeQKFatYfwKwTOBMxxYQtRmen0o9HaBBD/HD5gmDAq21JQZ:dMlO6ZirEDGKOm06RatYfwNTOBMxxYQq","tlshash":"289294c971d3f46593a358a5c0af080ff16c6c1da18da498f2a1d9e97c7905ed273f28","size":20036,"data":"","first_seen":"2025-10-10T21:54:22.793086Z","last_seen":"2026-06-11T20:21:03.126805Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/9967.d11294bbace0f438.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"53b8124cfa6183688d50dede83574bb9","sha1":"ae161987677b32cd5fa05706c635427d5af7dd97","sha256":"5a30113b051e5a39f95215b700048faad10b91f87eecc54b38cb5b9fe1911b72","sha512":"fbc3692efee6d5fa9e5aa0865c8bd89e1660ed081f04fcd2715ac44db20f93c1f9c6128ed6698a7cf3855765d5c46c19135f37d936fbbbae83194c8c561c6b07","ssdeep":"192:bp6wrVMeeF4skTXDj0XRq4ScWVqhXTFiMo4V7JJH:bowrVMeeFcSq4zLJB","tlshash":"4662edf7862540cc73e2c427931372446d7af2249893cd99b78f484c8ae0faa938677c","size":14708,"data":"","first_seen":"2025-11-12T03:41:30.857725Z","last_seen":"2026-06-11T20:21:03.119351Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"3fb7048dd4d250cee15a60c09c68445e","sha1":"103e27385162d66b93ea90f6027c5eb61fc7e2ff","sha256":"8a92c331581571165d2a074acc47d0624181d99a6466486640eb865df3761a81","sha512":"84e54dba72b767fc36910a04d478241a53a83d9d958675fc388ba4604fadb2432e156efb45f4e971c1bf86d40ede67030211c412ff7ae142201de0b74bef5cf2","ssdeep":"","tlshash":"7121af19eabdc4a500a3e4be8767d2082937a0933104e4aa3f4cd985df454958ae75df","size":1120,"data":"","first_seen":"2026-06-10T04:55:52.526649Z","last_seen":"2026-06-11T20:21:03.134221Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"d3ef6998ed45bccb4a4ff194ec77ecc3","sha1":"e9237414aeae1bbc2f5d948481a0f579b650bc65","sha256":"99bbf745405564a787da2a535e6049ae391c2c7ca85571cd14d369018a81efdc","sha512":"749580e2402df3117d9eee5040f139904efd9a9ec92f054b13e1c571fc6ebf55343ced69e053f4e39d5b839027a30af9b54f21272c99e02376d798bea9001679","ssdeep":"","tlshash":"2c01e54e4efd402615b3786f0e1b8101313bc9539559de487fed67900f86d3899e32e4","size":833,"data":"","first_seen":"2026-06-10T04:55:52.52875Z","last_seen":"2026-06-11T20:21:03.134767Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ddaaec4a2d83ad49a12259178edebd2","sha1":"d77f4d4bd6e9b21eddec0ce7bd7a3fb5f2e9b673","sha256":"4a5e8296b98090c968866e5385d59f81a1a76ad372a984c3b73d2c368507e46d","sha512":"ed8ea5c5cebe02e70de663d16db3700f6e1affb7fa45657494cbf9efab42d9bc7ae17b9249ea8ce5dcfb5de4668a48f70d700ab26f8327a39685bef9fd671300","ssdeep":"","tlshash":"d311cb2b453e083b0597da29c64b701527b3b3473208d88e394df6089f9aa45c7a36fe","size":1038,"data":"","first_seen":"2026-06-10T04:55:52.530749Z","last_seen":"2026-06-11T20:21:03.135268Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"f01c3c4d5bdff8284f46baa4044e98ff","sha1":"514c86aa51fac203d5bff101a53f94c9b1342c51","sha256":"afadd7bbc7b3fc0def9b0fbcaf001c50c01b7db3fec4880f57a570ebd956b0c1","sha512":"f3f5bde0c65f6750b38cb6625b808dd18cbf698d52475a61ac71c00ce760d59b84d8058596316c5937d28ad253a90a593edbbb81379a2687b4e3dca45e01c9eb","ssdeep":"","tlshash":"90700000088800202e02088a8a000302a8000e08082020a0a008a32bc0808030820028","size":24,"data":"","first_seen":"2025-10-10T21:54:22.826305Z","last_seen":"2026-06-11T20:21:03.135868Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"3fb7048dd4d250cee15a60c09c68445e","sha1":"103e27385162d66b93ea90f6027c5eb61fc7e2ff","sha256":"8a92c331581571165d2a074acc47d0624181d99a6466486640eb865df3761a81","sha512":"84e54dba72b767fc36910a04d478241a53a83d9d958675fc388ba4604fadb2432e156efb45f4e971c1bf86d40ede67030211c412ff7ae142201de0b74bef5cf2","ssdeep":"","tlshash":"7121af19eabdc4a500a3e4be8767d2082937a0933104e4aa3f4cd985df454958ae75df","size":1120,"data":"","first_seen":"2026-06-10T04:55:52.526649Z","last_seen":"2026-06-11T20:21:03.134221Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"d3ef6998ed45bccb4a4ff194ec77ecc3","sha1":"e9237414aeae1bbc2f5d948481a0f579b650bc65","sha256":"99bbf745405564a787da2a535e6049ae391c2c7ca85571cd14d369018a81efdc","sha512":"749580e2402df3117d9eee5040f139904efd9a9ec92f054b13e1c571fc6ebf55343ced69e053f4e39d5b839027a30af9b54f21272c99e02376d798bea9001679","ssdeep":"","tlshash":"2c01e54e4efd402615b3786f0e1b8101313bc9539559de487fed67900f86d3899e32e4","size":833,"data":"","first_seen":"2026-06-10T04:55:52.52875Z","last_seen":"2026-06-11T20:21:03.134767Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ddaaec4a2d83ad49a12259178edebd2","sha1":"d77f4d4bd6e9b21eddec0ce7bd7a3fb5f2e9b673","sha256":"4a5e8296b98090c968866e5385d59f81a1a76ad372a984c3b73d2c368507e46d","sha512":"ed8ea5c5cebe02e70de663d16db3700f6e1affb7fa45657494cbf9efab42d9bc7ae17b9249ea8ce5dcfb5de4668a48f70d700ab26f8327a39685bef9fd671300","ssdeep":"","tlshash":"d311cb2b453e083b0597da29c64b701527b3b3473208d88e394df6089f9aa45c7a36fe","size":1038,"data":"","first_seen":"2026-06-10T04:55:52.530749Z","last_seen":"2026-06-11T20:21:03.135268Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"f01c3c4d5bdff8284f46baa4044e98ff","sha1":"514c86aa51fac203d5bff101a53f94c9b1342c51","sha256":"afadd7bbc7b3fc0def9b0fbcaf001c50c01b7db3fec4880f57a570ebd956b0c1","sha512":"f3f5bde0c65f6750b38cb6625b808dd18cbf698d52475a61ac71c00ce760d59b84d8058596316c5937d28ad253a90a593edbbb81379a2687b4e3dca45e01c9eb","ssdeep":"","tlshash":"90700000088800202e02088a8a000302a8000e08082020a0a008a32bc0808030820028","size":24,"data":"","first_seen":"2025-10-10T21:54:22.826305Z","last_seen":"2026-06-11T20:21:03.135868Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/runtime.b64b71f3dbed7c00.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"fc7ad8b8fc60ae0d6fb6e114b42baaec","sha1":"fbf88bd826d30d06a321d3d9796b34500b6ea773","sha256":"1182088f180a569e05a0823d2079a5fdea4e4d4c960d9116d2cde14538d2966b","sha512":"8258eba9574910b9fbefd4f5bc89ec1e48784bc8bb2b6bd76dd7b06c0d1cbbb0da8947ef678ba1f4eb140701ebb5b395480b13a2a943dd7735ae6085b79d8f25","ssdeep":"96:A77GtBS5nK/CVTD+vV2Vt9AjSdIslM3k2IJbcNlGMy:A77eS5nUCh+v4/CjDsWUsE","tlshash":"638119bd6b2cb9e62b7244c56c3d9cf8b65824373017acb1a71fe8566058df00917a73","size":4133,"data":"","first_seen":"2026-02-11T09:30:36.546898Z","last_seen":"2026-06-11T20:21:03.11567Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/main.1bceabbbc7dc1d97.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"3761aaf503a1368bcb7b4dfc80152e22","sha1":"1452296a299a01188b3bdf4a7871bacefb823e92","sha256":"e7d957b438637917efe2641148411954bb43ffc0ca72494d8b6fc8ae89fdb37e","sha512":"e899f155bb430f2c9380da47e7569a368ebf9c85aa9f7ebc46f625ab65d5c54fe96b362aee08b51356fc35dc6103723a4dca389cf16288d343d685daa58fdf74","ssdeep":"49152:Y77NGJYQvrOtTPcWecZcLpsVe7nX+aXyeRzDnzI8Pq0caeq:Y77NGJYQvrOtTPcWeB","tlshash":"7485c7582a6bf3449408c0dbf9373c88d59dd18aa00b50e56fb14bf75ba1746ebacd23","size":1819039,"data":"","first_seen":"2026-02-11T09:30:36.562856Z","last_seen":"2026-06-11T20:21:03.136576Z","times_seen":55,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/6709.bfe45a98d0131c8b.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"5fa18af2bcd2e9f1a2f48f5f9d9ba79a","sha1":"3ebd9631d2979f46dbe9c170132fcd97441a7e0c","sha256":"81777b6c0983cd6c0bb8f4ad12982410b4b955c8d6d4f27b1b7b17b11957d69c","sha512":"999e89e8fe17cd1b899323d29b3eeab6ca786d5c280a289f93547a6bec0bdfc699e4b6b5a363542f3adf59e2165e4a2fa1d6c635202327670f4b0910212274e8","ssdeep":"768:K1tpPXcQn/zro6EysU0hS/vOl1HK7M1gni9KBrEP/iVm/xaavDLxkf/E1/M8AHS:Kh/BsUyS/q94ni9KBrEP/iVAvDL6El","tlshash":"3023d99a3742357716fb829618b1050bb92d2480a2054d6db1e8dcee5e9dcccb33bb7c","size":49535,"data":"","first_seen":"2025-10-10T21:54:22.772008Z","last_seen":"2026-06-11T20:21:03.112494Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/common.2506177d324cc13c.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"bc8cfb6fa05ac43c41d1b856cc439594","sha1":"cdd0f9d94f60205728e8978db864631d151e9e1c","sha256":"2d1dd65f7e8c77653dc5bd1dacae4624ccdf3e2dab54febf97373a3213f9b0c7","sha512":"ec732b3c639bac6694bbf9ec165d651762925818b0649d04bcc9bab76bfce54caf155d6b669061b63250f2297fd88b2e0822fa5af40e5f4f30a749502a89f9e4","ssdeep":"768:8VdzdjfdFwrexzMv7aCTfYjn5FZ3EzCErm2oKsU9xem:Wzq8p4bcm","tlshash":"071385f2c62450dd33a1c8439613b3086c68f571d852c999fb5dacac8ae2fee528577c","size":41970,"data":"","first_seen":"2026-02-11T09:30:36.555035Z","last_seen":"2026-06-11T20:21:03.132611Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"app start","filename":"https://webtrader.possares-renoyx.com/","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/assets/images/loader.svg","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:28.223Z","timestamp":1781209228223,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /assets/images/loader.svg HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:28 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 76823\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:56 GMT\r\nETag: \"69a16630-12c17\"\r\nCache-Control: public, max-age=86400\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":76823,"size_decoded":77107,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9ee6f2aedb04bbf5897c87dda1d3376b","sha1":"481e817c8bd9ee62c7c32ad66ae872685a087a38","sha256":"932323112c20fb8ab05cbf2bbfd47e626d0d1d84cb8c17089d2379b4735b32b9","sha512":"0156d42fa216ac46205d7f5fcc07b7214f6bc1ff5db0a724a0852d8fc5346e29c5efb01d70e2dd743dcc85bf0b418d59965b679b924b26d99d97a3a57d03a235","ssdeep":"384:PqAO2u/7NU4YNBAXWKAjYBsBQ6LVU37a6aWr83UEAov5gzqLzNP73zQjGr85aNh5:YuS+R4v/Y4RDLV3RxFvUEOdVpRWV8","tlshash":"af731ae54b7b0c5598cfe0d07fe63b540913be5a8909d0ab9bb91c26f110b52983edce","first_seen":"2025-10-10T21:54:22.811266Z","last_seen":"2026-06-11T20:21:03.111263Z","times_seen":78,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":233,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/settings/config.json","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.164Z","timestamp":1781209229164,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /settings/config.json HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json\r\nContent-Length: 258\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:58 GMT\r\nETag: \"69a16632-102\"\r\nCache-Control: no-cache, no-store, must-revalidate\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":258,"size_decoded":555,"mime_type":"application/json","magic":"JSON text data","md5":"fa5343dec909eb2deabf591ea2141dd9","sha1":"944247de520b4d78bd4d0fe3c7ea865373f9a59f","sha256":"b37e363b52ccaa7e0976cbacbd4045e8977a62c0a6282f59f4009817c6624f88","sha512":"c7ff2c6cb6edb8bede901834e62bd96de9b7c1dff97ff6b0fbf8d802d6b5cdf2f807d780977c5ff17dd7609cd62d38ca52e70d10f4ac876f0e7f816ab4205625","ssdeep":"","tlshash":"0dd05ea0c83848b725d862f6042ad001a5237d2f024c762cb3a3b55d5b1e25f29b299d","first_seen":"2026-06-10T04:55:52.472986Z","last_seen":"2026-06-11T20:21:03.111898Z","times_seen":3,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/6709.bfe45a98d0131c8b.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.719Z","timestamp":1781209229719,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /6709.bfe45a98d0131c8b.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 49535\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-c17f\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":49535,"size_decoded":49840,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (49535), with no line terminators","md5":"5fa18af2bcd2e9f1a2f48f5f9d9ba79a","sha1":"3ebd9631d2979f46dbe9c170132fcd97441a7e0c","sha256":"81777b6c0983cd6c0bb8f4ad12982410b4b955c8d6d4f27b1b7b17b11957d69c","sha512":"999e89e8fe17cd1b899323d29b3eeab6ca786d5c280a289f93547a6bec0bdfc699e4b6b5a363542f3adf59e2165e4a2fa1d6c635202327670f4b0910212274e8","ssdeep":"768:K1tpPXcQn/zro6EysU0hS/vOl1HK7M1gni9KBrEP/iVm/xaavDLxkf/E1/M8AHS:Kh/BsUyS/q94ni9KBrEP/iVAvDL6El","tlshash":"3023d99a3742357716fb829618b1050bb92d2480a2054d6db1e8dcee5e9dcccb33bb7c","first_seen":"2025-10-10T21:54:22.772008Z","last_seen":"2026-06-11T20:21:03.112494Z","times_seen":78,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":231,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/2381.6bdb8222c04f4f70.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.733Z","timestamp":1781209229733,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /2381.6bdb8222c04f4f70.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 24055\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-5df7\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24055,"size_decoded":24360,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (24055), with no line terminators","md5":"5ef377f3cbd81741952dc19c0d9f67bb","sha1":"ddd543ba8e9e50e0053dbb133523b313f054da3c","sha256":"ee506791ee0287f785769370c45ed79c90f94d3a670523d7645a0b877006b1b8","sha512":"e36567da16a2e348da680b86e3cb7f05569a2404c54508ef34bae9c166f4e73eb53d5533bfde0772bf3175e6ff044f0d1d615f5b81c88170b22e74b20cfb85b9","ssdeep":"384:ucymEE+RDYWZtY7QUNktDgWMHvTZ8wQ36wI+iuFkhfTQmSreXQ1ZyDghfD9OL3wn:uc6E+RDYWDtD9Mrm6wI+iuFkhfTQmSai","tlshash":"c5b2c6587341747243ca905b907b4607b3394044b187b038f56dccef2ebadeea2a7a79","first_seen":"2025-10-10T21:54:22.816981Z","last_seen":"2026-06-11T20:21:03.113077Z","times_seen":78,"resource_available":true,"data":null}},"time_used":304,"timings":{"blocked":-1,"dns":0,"connect":31,"send":0,"wait":206,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8692.fd07f664154c5e8c.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.744Z","timestamp":1781209229744,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /8692.fd07f664154c5e8c.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 249382\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-3ce26\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":249382,"size_decoded":249689,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"efe5a73c44745c8acde16c5934b8638b","sha1":"e6d80d221f87420289b6f9caf8a56e81c8c454cd","sha256":"1114e51c25fc761104db6d2d06df28b3ba322b37c383183883db6367f3fe994f","sha512":"a5d664289783d2755d5200b5b3c6d831f6b58f73fd46bc3cf0c7acc82c7de7159cd1e4a29406d000cbbeb568c118e9c4048f2318fe59ba1ccd530eff592aa0b7","ssdeep":"1536:76khn2cuOKPczJhdTiDyU23WAnxtNqFrk+SPes88oROCGxHrm6IkjT9lVcPZVL:dhn2cujL+fnxtklk+wx88o+rAL7","tlshash":"f1340a12f895a0e102eb6458a76f4e02a62c1d46290ed498f3dccdda77dd84c726bf3d","first_seen":"2026-02-11T09:30:36.545231Z","last_seen":"2026-06-11T20:21:03.113575Z","times_seen":51,"resource_available":true,"data":null}},"time_used":626,"timings":{"blocked":289,"dns":0,"connect":0,"send":0,"wait":205,"receive":132,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/getPage/44fffb3d-56d9-410b-8558-99c72d6aca9c/login?lang=null","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.115Z","timestamp":1781209231115,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/getPage/44fffb3d-56d9-410b-8558-99c72d6aca9c/login?lang=null HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAuthorization: Bearer null\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/login\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2322,"size_decoded":2531,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"a4241e3bc07f1e29af5b4a019f110378","sha1":"1e1ec88600240eae63c4936c03603b7c61b258d8","sha256":"1b6a8f4d24e3e43ba39c11aabb2ef19a27610890f82e0c1061fa69d81949d837","sha512":"0a2c0034088529501b5c367885e8b60ac3ddd63875719d8955eb71aa941f6f1fda2de63eecace6b6982610f634898ce4da996e8e4b24fa56a55544017202d31f","ssdeep":"","tlshash":"d7418e479d22ddea5f0b44e2f462bf92a6ad60ef88099c30806e8fd591f15f51392f03","first_seen":"2026-06-10T04:55:52.498388Z","last_seen":"2026-06-11T20:21:03.114108Z","times_seen":3,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/assets/images/logo.png","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.117Z","timestamp":1781209231117,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /assets/images/logo.png HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/login\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: image/png\r\nContent-Length: 2965\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-b95\"\r\nCache-Control: no-cache, no-store, must-revalidate\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2965,"size_decoded":3256,"mime_type":"image/png","magic":"PNG image data, 212 x 87, 8-bit/color RGBA, non-interlaced","md5":"21a0146f6fa1fc583dbde25990e99711","sha1":"ecdfdbdd5352c1251b5c42011a35dda63a9c4439","sha256":"05e54cf4ad8df722dc4e7106f64904138d91bdcfdca8e5296174353389974461","sha512":"af99babb2429aeab1e6c64b73d9b2a774f9e160b11bdd8087965c2698391af5d42c967b4e658005fa567fe18ec7d424feacde6efcbce55dd479936b46241bcfe","ssdeep":"","tlshash":"ae516ed127652efed0addf32e57045c88ca5e7506708e50b7cf44a55110a1ec178a7d4","first_seen":"2026-06-10T04:55:52.509995Z","last_seen":"2026-06-11T20:21:03.114574Z","times_seen":3,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":164,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/settings/config.json","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.161Z","timestamp":1781209229161,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /settings/config.json HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nCache-Control: no-cache\r\nAuthorization: Bearer undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json\r\nContent-Length: 258\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:58 GMT\r\nETag: \"69a16632-102\"\r\nCache-Control: no-cache, no-store, must-revalidate\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":258,"size_decoded":555,"mime_type":"application/json","magic":"JSON text data","md5":"fa5343dec909eb2deabf591ea2141dd9","sha1":"944247de520b4d78bd4d0fe3c7ea865373f9a59f","sha256":"b37e363b52ccaa7e0976cbacbd4045e8977a62c0a6282f59f4009817c6624f88","sha512":"c7ff2c6cb6edb8bede901834e62bd96de9b7c1dff97ff6b0fbf8d802d6b5cdf2f807d780977c5ff17dd7609cd62d38ca52e70d10f4ac876f0e7f816ab4205625","ssdeep":"","tlshash":"0dd05ea0c83848b725d862f6042ad001a5237d2f024c762cb3a3b55d5b1e25f29b299d","first_seen":"2026-06-10T04:55:52.472986Z","last_seen":"2026-06-11T20:21:03.111898Z","times_seen":3,"resource_available":false,"data":null}},"time_used":160,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/getPage/44fffb3d-56d9-410b-8558-99c72d6aca9c/welcome?lang=null","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.112Z","timestamp":1781209231112,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/getPage/44fffb3d-56d9-410b-8558-99c72d6aca9c/welcome?lang=null HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAuthorization: Bearer null\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/login\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":234,"size_decoded":443,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5b5216d03da8d51c71da757e1f51a1bf","sha1":"f8491c7197c3f98b2449160de7a6e06aae6f7884","sha256":"62f8df9f3a124fe122dcc0a165b500182e20e8a2875a37883722b8cb68a0d67f","sha512":"b18ede103e2d99675c13d33bcd5c4991a172c91206310f66b586cf3264cbcb40d47af5972327c41297e017110c2a33e0a846d8190ba4d1472465f4321c245d88","ssdeep":"","tlshash":"add023227d69592b3f8b135478307c04d7fd515b43908458725de5a941f05f5eb5344f","first_seen":"2026-06-10T04:55:52.493485Z","last_seen":"2026-06-11T20:21:03.115192Z","times_seen":3,"resource_available":false,"data":null}},"time_used":172,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":172,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/runtime.b64b71f3dbed7c00.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:27.946Z","timestamp":1781209227946,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /runtime.b64b71f3dbed7c00.js?v=2.3.8 HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:28 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 4133\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:58 GMT\r\nETag: \"69a16632-1025\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4133,"size_decoded":4437,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (4133), with no line terminators","md5":"fc7ad8b8fc60ae0d6fb6e114b42baaec","sha1":"fbf88bd826d30d06a321d3d9796b34500b6ea773","sha256":"1182088f180a569e05a0823d2079a5fdea4e4d4c960d9116d2cde14538d2966b","sha512":"8258eba9574910b9fbefd4f5bc89ec1e48784bc8bb2b6bd76dd7b06c0d1cbbb0da8947ef678ba1f4eb140701ebb5b395480b13a2a943dd7735ae6085b79d8f25","ssdeep":"96:A77GtBS5nK/CVTD+vV2Vt9AjSdIslM3k2IJbcNlGMy:A77eS5nUCh+v4/CjDsWUsE","tlshash":"638119bd6b2cb9e62b7244c56c3d9cf8b65824373017acb1a71fe8566058df00917a73","first_seen":"2026-02-11T09:30:36.546898Z","last_seen":"2026-06-11T20:21:03.11567Z","times_seen":55,"resource_available":true,"data":null}},"time_used":161,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcCo3FwrK3iLTcviYwYZ8UA3.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:28.215Z","timestamp":1781209228215,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcCo3FwrK3iLTcviYwYZ8UA3.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://webtrader.possares-renoyx.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 73016\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 05 Jun 2026 21:30:05 GMT\r\nexpires: Sat, 05 Jun 2027 21:30:05 GMT\r\ncache-control: public, max-age=31536000\r\nage: 514223\r\nlast-modified: Tue, 09 Sep 2025 18:42:18 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":73016,"size_decoded":73829,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 73016, version 1.0","md5":"e990806dbc9b31e48655f37651732c80","sha1":"54e77318d2bf0a4f449782986345f4fca55c22a2","sha256":"dd8a4575be9806105ac3decd02805cd2782fe7c05abb02c582316bc436ce03ae","sha512":"d8af9c56b0b4baaa791ac9e293f73925ada707b1dfd171a0f6f41ce838e44dbf8f91b560f2c1f1ef5fcb6f7ab7d60a9a02f7a357fb6a1e554e9648135c56170d","ssdeep":"1536:o+w6J6OKIaGHrkvPegUsHuVeSSFt4FN7mgkdoPvwdDjmbdkbZp:JwPOKIVQXlYZhDPvwVjmaH","tlshash":"1a63122068c07586f4aa437b8f370b89f013fa47a963c83753c988e6936242d22edd35","first_seen":"2025-06-23T04:26:53.679576Z","last_seen":"2026-06-12T00:11:44.784829Z","times_seen":832,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":34,"send":0,"wait":15,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/get-dialing-codes/44fffb3d-56d9-410b-8558-99c72d6aca9c","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.525Z","timestamp":1781209229525,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/get-dialing-codes/44fffb3d-56d9-410b-8558-99c72d6aca9c HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nCache-Control: no-cache\r\nAuthorization: Bearer undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9358,"size_decoded":9567,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ed3e0c8b203bb703a4e0eebbd3cae2e7","sha1":"f7ecdde2699bd22eea05df5f8859c0c220c2bac7","sha256":"4db146bee887d7d32df3d754d1136c7896af40fe7c7d8fc0d93c7bbcafda1618","sha512":"48072e17798ea750287e6ecd859a56226ce747edc1a4b5f55b54c1dde2e21d314134b4fe76a3057abc1e6d69f9cea7b7bd3e793d70ca317e0a657345d722cb02","ssdeep":"96:pP8ISM36bWoYrV5c9nn5aOZvg4yXN03VNS:pPaIMErOnn5aOZv6dM+","tlshash":"481223bba60dae6ced36bb12b44f3a355c3af46418cc0907608cdb76b2c6bfc1125061","first_seen":"2026-05-29T22:25:43.609663Z","last_seen":"2026-06-11T20:21:03.116631Z","times_seen":7,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":163,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8499.e99a4fcc6012c716.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.735Z","timestamp":1781209229735,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /8499.e99a4fcc6012c716.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 375998\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-5bcbe\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":375998,"size_decoded":376305,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"243d90bdd7c884480c2885e91dfe3653","sha1":"69d2065c6b615d608d8a9b88835f368b3540d288","sha256":"cf86cd3892e401f04918285cca00d176011680f1d65d9fb33dcf0b1a51721a84","sha512":"e8057b4d65cd12a3a0433c8c829439b29da8b9d0f104e2ddc72514be6cb4917a8f72e18b60b5f10c4fdc72afefd21bf9666c8e1a3edfc669fcfd4db212eddb95","ssdeep":"6144:KVCCgdFUuEKBpzH+ehV6Q6tffhdx+y6pfttisdjuxT8Qc76HTEtva7nMUFAz/FzQ:zEK7zeehV6Q6Nfhr+y6pfD+MUFAz/FzQ","tlshash":"45843cd63211206603eb50e9547a0247f32b1899a50a44bc77bc8cee6f6dd4c72beb7d","first_seen":"2026-02-11T09:30:36.525663Z","last_seen":"2026-06-11T20:21:03.117211Z","times_seen":55,"resource_available":true,"data":null}},"time_used":482,"timings":{"blocked":63,"dns":0,"connect":0,"send":0,"wait":205,"receive":214,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/388.c5961fcbb3e7466e.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.738Z","timestamp":1781209229738,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /388.c5961fcbb3e7466e.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 18109\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-46bd\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":18109,"size_decoded":18414,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (18109), with no line terminators","md5":"aa304448138bfb837d5c31c64f73d8b2","sha1":"0af73e9085d07636bc8d23859a02e00f3fa4227d","sha256":"de804b8cf58dc814514db13d73c679ba0b525200865bfba8136b5c4b724c1b71","sha512":"873643e7106d381ef30d7f20311a5bc1ca8ebc32218efd87c715f142dbe75c479f1a70079553c5cda6f0ce301e02c20d0ee4f8e79e807ecd28c92b4dfcec777f","ssdeep":"384:uTVNZSYxhM9B+UZqYLVyeFFPS+7qZGElIM9BybawYmlXU2PJ:cVXnmF3VmZGElIM9BybbYmlXU2PJ","tlshash":"7382b7ae3369b93a46dd4995e076860bf71b2c48900b006cb67c9cdf196cc44b2b6f7d","first_seen":"2025-10-10T21:54:22.814435Z","last_seen":"2026-06-11T20:21:03.118388Z","times_seen":73,"resource_available":true,"data":null}},"time_used":433,"timings":{"blocked":231,"dns":0,"connect":0,"send":0,"wait":202,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/9967.d11294bbace0f438.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.740Z","timestamp":1781209229740,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /9967.d11294bbace0f438.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 14708\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:58 GMT\r\nETag: \"69a16632-3974\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14708,"size_decoded":15013,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (14708), with no line terminators","md5":"53b8124cfa6183688d50dede83574bb9","sha1":"ae161987677b32cd5fa05706c635427d5af7dd97","sha256":"5a30113b051e5a39f95215b700048faad10b91f87eecc54b38cb5b9fe1911b72","sha512":"fbc3692efee6d5fa9e5aa0865c8bd89e1660ed081f04fcd2715ac44db20f93c1f9c6128ed6698a7cf3855765d5c46c19135f37d936fbbbae83194c8c561c6b07","ssdeep":"192:bp6wrVMeeF4skTXDj0XRq4ScWVqhXTFiMo4V7JJH:bowrVMeeFcSq4zLJB","tlshash":"4662edf7862540cc73e2c427931372446d7af2249893cd99b78f484c8ae0faa938677c","first_seen":"2025-11-12T03:41:30.857725Z","last_seen":"2026-06-11T20:21:03.119351Z","times_seen":52,"resource_available":true,"data":null}},"time_used":449,"timings":{"blocked":246,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/8888.a36f7263afdacf0f.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:30.851Z","timestamp":1781209230851,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /8888.a36f7263afdacf0f.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 33845\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-8435\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33845,"size_decoded":34150,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (33845), with no line terminators","md5":"e0dcc720502b3f5cfe3349e565d670e1","sha1":"ad4d594c74382150f5d83a8a962af97b6d53c2f7","sha256":"a451d955bc4621f6d8e830af2551d58188ef817006f2089116c82e2d8646bf85","sha512":"2f87c3433b1fa75c51f79e2bfef259ad70849cbc420d143e119f9b8693842187417a2714002220383471d904499af28cccaee002e2095ab14e1ed56bc389b876","ssdeep":"768:F3oMy/JJm/aixoWNpfIFBhWtUh2Q2jspO/trGQLkXfEQpan8jCbM:CmiixpMqtovABnsU8j1","tlshash":"aae2f7f2853040e933b2c04242673606591cfe20d91acd58f6ae9d9d7be9f8d6297b3c","first_seen":"2026-02-11T09:30:36.523741Z","last_seen":"2026-06-11T20:21:03.119913Z","times_seen":53,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":203,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/bg-login-page.93c0bacdf18c4dde.jpg","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.128Z","timestamp":1781209231128,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /bg-login-page.93c0bacdf18c4dde.jpg HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/styles.3ec2a20c30c77d74.css?v=2.3.8\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 28085\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-6db5\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28085,"size_decoded":28378,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=Adobe Photoshop CC 2019 Windows, datetime=2024-09-05T16:04:22+03:00], baseline, precision 8, 1010x1078, components 3","md5":"d2e8e3c6e915dea0f3964659274d3489","sha1":"613385807945ccbbb61f672c5186f626582b83be","sha256":"19b831c48f554434abab2e1406d0404195116e56c4b75d4d0686a12fcaf6abf8","sha512":"45a5893aec025f511aecf14d3be7260f748a32189b548e8ae8fda7409b351cc769b44350dd4b219314036a6f5d9bb564c5208ceaead374acb99794df62cfd0a5","ssdeep":"384:nnTAhJL2/QDxqvC+6l/CZ85s/ZYnTy7s1jOYN7Ntj8Ww4bjAWlm+3:nGS/u/OmnTms1jOY5fQ4bgE","tlshash":"b4c29eb5af48934ac56beb3116b3432d7f0348fa2e961193e5bd40b21c8615ebd292e0","first_seen":"2025-10-10T21:54:22.794517Z","last_seen":"2026-06-11T20:21:03.120488Z","times_seen":72,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":233,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-11T20:20:27.363Z","timestamp":1781209227363,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:27 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: W/\"69a1662f-2d62\"\r\nCache-Control: no-cache, no-store, must-revalidate\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11618,"size_decoded":3702,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (4298)","md5":"69737f2ee5ecfbca8d466a4facc28c62","sha1":"428a5da3149e4050495c5e476934a06fbc7e1687","sha256":"89f0fb6225543227743e48f78fa0db4c2ee4b500b30910b6e1d3742e857e1db6","sha512":"dec13c5b67514272df12af481f3b36577e39353c99fbc06d8e3cb0cc8507f19e78e2c6162b01e7d68ac53c1d1413650288aaf7c76a0daee6198b18f5341c6f93","ssdeep":"192:xdnHaqjJmXoZSvaTsS3wNE3rC8bZpiLi1I1PrPGIifmhqnYO:x0StbOrPJiXYO","tlshash":"1a328112056fc009621389e725cfb6223d5a9053919a9569befc8e99dfcfc7703b3368","first_seen":"2026-02-11T09:30:36.521618Z","last_seen":"2026-06-11T20:21:03.121235Z","times_seen":56,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":9,"connect":29,"send":0,"wait":161,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/validate-ip/Terminal/44fffb3d-56d9-410b-8558-99c72d6aca9c","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.341Z","timestamp":1781209229341,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/validate-ip/Terminal/44fffb3d-56d9-410b-8558-99c72d6aca9c HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nCache-Control: no-cache\r\nAuthorization: Bearer undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":229,"size_decoded":438,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"75bc726d46f370095fac1de753bd4b5f","sha1":"714aee07a1b980d3c8c53cddd803703e01ffc1be","sha256":"e87c357be53aaf9d2cbf25e84662a6ac52316a67e32d471493b41456ad24886e","sha512":"2c4e973903e55d4b25c9fe4c0779514a7be6a9ae8dfd0b5bd2c771d810529466957eec180b97741a966691307eb3f405ac1f2b6379fd5cdc5240b6f2fc813b11","ssdeep":"","tlshash":"78d02225acb88e43ad12828829867f2047fcf0a7d0a38c10d18e6f6801f82f12a53227","first_seen":"2026-06-10T04:55:52.52106Z","last_seen":"2026-06-11T20:21:03.121963Z","times_seen":12,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/3654.68719923a6e705c3.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.737Z","timestamp":1781209229737,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /3654.68719923a6e705c3.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 374923\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-5b88b\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":374923,"size_decoded":375230,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"ce924dc21c56a1ad3292f67fece39840","sha1":"1a805e2e29c9b07c51aff92f50613c1536423bdb","sha256":"277bfbb3c93ad65f04378c80652381aafabbf6d64a5055e60ec4f451c62a4563","sha512":"573e21db7726ed2e5c9fc353302478b217c46f89f4e0d0bc04f5aa9e64383479d2301b762cf6dce7e08f3b4b8ef01ea68bec22809899d9a306f3e7a2d26fefdb","ssdeep":"6144:NyA9lluWirEiM3z0zAQL48XdFoFkPAptBR2bmtOgXgTj4YDuEIJ9ade9Z+uYMkAq:j9lluWeEiM3z0zAQL48XdFoFkPAptBRk","tlshash":"6884ca22f3802017415e6243b023174297271aa66d85cdadbe7cade67e69c4d33feb74","first_seen":"2026-02-11T09:30:36.526635Z","last_seen":"2026-06-11T20:21:03.122632Z","times_seen":51,"resource_available":true,"data":null}},"time_used":584,"timings":{"blocked":168,"dns":0,"connect":0,"send":0,"wait":204,"receive":212,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/4310.f7ab4f16927a9dbf.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:30.449Z","timestamp":1781209230449,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /4310.f7ab4f16927a9dbf.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 19630\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:58 GMT\r\nETag: \"69a16632-4cae\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":19630,"size_decoded":19935,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (19630), with no line terminators","md5":"89b38c213860616a5b250f4260d8c8bf","sha1":"52d6f14b48af569693b2a88ce2aad2a45095c6d9","sha256":"4fa5f3c49dbb4673e1b78d48e9248d7f391e74bb80f8f68edee1d7af9d6648b3","sha512":"13bdf0b4c4403f9453bfe4d5da9084b24ca09929751316863979524a13d1b1d46142e565448db59aaf35f626eb73561615336994b32d00800a755fe87d4b8a9c","ssdeep":"384:5ffpQBXtfSvI5kQ4Y3FTFEdvLWmEdbXNF1JEFFWFDVJ4:5ffpQBXL4Yx4yrXr4","tlshash":"4b9263f2852450dc3395c4024723b2055e1cfe21d56acaadfa9dc84da7d6feea28573c","first_seen":"2025-11-12T03:41:30.817325Z","last_seen":"2026-06-11T20:21:03.123419Z","times_seen":53,"resource_available":true,"data":null}},"time_used":211,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":210,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/4927.9d8d53103da50dfa.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:30.680Z","timestamp":1781209230680,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /4927.9d8d53103da50dfa.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 3380\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-d34\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3380,"size_decoded":3683,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3380), with no line terminators","md5":"97671a41e75ac4f3a3e54d251d504362","sha1":"475521ed9b5b023b0fb298f1a854bc8123656e9e","sha256":"626252f58c78a366fd24075f97b922f4acda36abe8e0f48d1231ca86762676d8","sha512":"0a08e36d90e0a2ae2dbc72ef72e14cdded31746f38aea620f9dab712c983596ea4fae928346adb48ee42f3ca287b2c0a7f394fc606630e28b91bc0c10f11a535","ssdeep":"","tlshash":"b861960655827466227e48e8df76d540f8fb0e424043ce84fffccd706aa6589b1c7ab8","first_seen":"2026-02-11T09:30:36.548764Z","last_seen":"2026-06-11T20:21:03.124095Z","times_seen":55,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":160,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/main.1bceabbbc7dc1d97.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:27.954Z","timestamp":1781209227954,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /main.1bceabbbc7dc1d97.js?v=2.3.8 HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:28 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1819039\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-1bc19f\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1819039,"size_decoded":1819348,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8d38d4c18faab6d0021da3cda1180b0c","sha1":"7473c4ed43c15e75483d8d8e1e340082ec60e45c","sha256":"854b0203cb5282ae49d8a8a73e63ef61d0868c4313c1c4f8fcd13aa052e3e132","sha512":"e293e89744072d53ea37191f9f27de160aa6cea53358d3b4202e9e02484ca82e2324dc1e076b8252d4b58d7656ae072092b423d71867038f77462b2d0a93f823","ssdeep":"24576:Y7sAhVuhEyG9Z3TSZWkcSa2dpGGJYQv5W2kWzfFaGMDITctTP2AhVuh20FPQCLgh:Y77NGJYQvrOtTPcWecZcLpsVe7nX+aXs","tlshash":"54251bca32e2755a079650a6c43b480eb12d1c80b018c53cffad99dff968d5c52bbb79","first_seen":"2026-02-11T09:30:36.540225Z","last_seen":"2026-06-11T20:21:03.124626Z","times_seen":55,"resource_available":false,"data":null}},"time_used":958,"timings":{"blocked":-1,"dns":0,"connect":29,"send":0,"wait":206,"receive":677,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/styles.3ec2a20c30c77d74.css?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:28.226Z","timestamp":1781209228226,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /styles.3ec2a20c30c77d74.css?v=2.3.8 HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:28 GMT\r\nContent-Type: text/css\r\nContent-Length: 387029\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-5e7d5\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":387029,"size_decoded":387322,"mime_type":"text/css","magic":"ASCII text, with very long lines (65309)","md5":"dc519e7a5e9b0d1a1694e048d2d226a1","sha1":"97f386f57ad0d0567b4241e8e87d36315b465e10","sha256":"7e50a0a3fc5f9775ba15794ef639f5abb83e672afd383cace9f9b1e4bf23701e","sha512":"1e833f05076687bd657904d442c4d5fe2623e7bd7327ea4a4d0d3be853ed84144a41d4dba67e35d6abf184b4d773fcea3e9b68f9aefe74804545b7b9f54d731c","ssdeep":"6144:V11tMa3SYiHENM6HN26njkUoqHKJE8A3phEuqWXkJzAf9w3pHxNKn2lgZ:XjkUoqHKJE8A3phEuqWXkJzAf9w3pHxy","tlshash":"8384e9d1f101212df2a7c17950c0fa596d5fa282e6520ffbf05b3a7886cd9ca126bf19","first_seen":"2026-02-11T09:30:36.532555Z","last_seen":"2026-06-11T20:21:03.125804Z","times_seen":55,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":-1,"dns":0,"connect":30,"send":0,"wait":203,"receive":213,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/favicon.ico","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.335Z","timestamp":1781209229335,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 435109\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-6a3a5\"\r\nCache-Control: no-cache, no-store, must-revalidate\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":435109,"size_decoded":435407,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"162f749f48df2a6cd9ab1f749d18efc6","sha1":"7e88404aa0fcf3713d2a14c75d872469710137d6","sha256":"3dbd95537239467f11eafbfec108cf79454aacbfd23523162ff006f4bbb70079","sha512":"c40ef9126000b2a5291bc861b03b93c5ba5929602297c446794d669460d8e4a0162d9e640bc947bab1c61610bc73859887fe53a0a6f0ec7bd3e5bef2b572782d","ssdeep":"1536:4CDlGVjallnIRCpa8E8EaCPNitFGoHqtJ:VDGMJsCojUANw8tJ","tlshash":"e2947f11d25158cec4b48fff87424fbafe24c899a32a267e70ac55f71915af85b4108f","first_seen":"2026-06-10T04:55:52.48158Z","last_seen":"2026-06-11T20:21:03.126293Z","times_seen":7,"resource_available":false,"data":null}},"time_used":420,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":216,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/7872.19b4e259a06f7ec4.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.714Z","timestamp":1781209229714,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /7872.19b4e259a06f7ec4.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 20036\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-4e44\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20036,"size_decoded":20341,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (20036), with no line terminators","md5":"1b49f241c63ad019754ab0164a28d15e","sha1":"72282bdde1ec3a9536553c8d1917c20a3286c822","sha256":"dd7270176b0549888849e84f806b92f753ffbdbf36b1e67663f24a0b56c812c0","sha512":"16b4dde098713ef5aac90d7d10b3844d64e72f0e90ede225e66dd5a24fd158807c45f9d743f96002d0c1ccde30acd39e60b676ef375e97999f62abd403ae3666","ssdeep":"384:wGMlO6ZiCAEDGKOm0TeQKFatYfwKwTOBMxxYQtRmen0o9HaBBD/HD5gmDAq21JQZ:dMlO6ZirEDGKOm06RatYfwNTOBMxxYQq","tlshash":"289294c971d3f46593a358a5c0af080ff16c6c1da18da498f2a1d9e97c7905ed273f28","first_seen":"2025-10-10T21:54:22.793086Z","last_seen":"2026-06-11T20:21:03.126805Z","times_seen":76,"resource_available":true,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/assets/i18n/IT.json","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.109Z","timestamp":1781209231109,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /assets/i18n/IT.json HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAuthorization: Bearer null\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/login\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: application/json\r\nContent-Length: 22369\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-5761\"\r\nCache-Control: public, max-age=300\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":22369,"size_decoded":22653,"mime_type":"application/json","magic":"JSON text data","md5":"3a4c5d219c41bd683390e846885982c8","sha1":"0dab6690cad0b2c96bb22f6e77c0cce1b15218db","sha256":"2d3cc56947c7aa69133aa4ea2296113aaca7932e1c6bf4d9a6a8b72902c5ed79","sha512":"a3a8ae3c574a7ac4db3d13e5c613fc6df61d7651312b0cb72a2ca973eaea65749e0d223612b0f0a1999968492ca445c076f254f2f5fefe798789ef4f3332012a","ssdeep":"384:F/AuYEfiTPSs53rwf6UvSwySDU6Vscctrse4n6kQ:p9Y42Pv53rMwSU6Vsc7ePkQ","tlshash":"a0a24373d4d01e6118b5528471b69621f31b0fafb6091c2f79b83f2cafbe91451caa39","first_seen":"2026-06-10T04:55:52.491936Z","last_seen":"2026-06-11T20:21:03.127382Z","times_seen":3,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/polyfills.3115db2c0ec3f144.js?v=2.3.8","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:27.948Z","timestamp":1781209227948,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /polyfills.3115db2c0ec3f144.js?v=2.3.8 HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:28 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 47636\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-ba14\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":47636,"size_decoded":47941,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (47636), with no line terminators","md5":"0c021c8e2a0c83083eee911fefc28402","sha1":"dbe6b91f40030426000a366cc389e9e8009f5064","sha256":"28cce31dd74fdc3c417a433ed3c44a49d908ceeec4447caaee28fbac67fc9144","sha512":"0512d82acd9b681e22aa07a113f680733640a80db2cdeddf8b02a763edb9532183624142c31f9e940f021a01f25c7175ecb6465b1b278d28801a0cdd0f21271f","ssdeep":"768:Oao1hFBEkYWk7lpxhoXzQ8x64QQH5XHb4XchK6mJ19i7bhDgqj8AwOjpVSYo5+L7:JkYWk7lGTFPt1wkintit0T1cvqd2","tlshash":"1c23fac677a2f0668bf661f4a13f850bf2361564785c88e4f258d8e4397908ad07bf2d","first_seen":"2025-10-10T21:54:22.79596Z","last_seen":"2026-06-11T20:21:03.128525Z","times_seen":78,"resource_available":true,"data":null}},"time_used":328,"timings":{"blocked":-1,"dns":0,"connect":29,"send":0,"wait":213,"receive":41,"ssl":45},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/getMenu/44fffb3d-56d9-410b-8558-99c72d6aca9c","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.518Z","timestamp":1781209229518,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/getMenu/44fffb3d-56d9-410b-8558-99c72d6aca9c HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nCache-Control: no-cache\r\nAuthorization: Bearer undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":580,"size_decoded":789,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"dabea9cb45887e7c142cc0ef585c6106","sha1":"c59c7125785d188cb00f5322d036335391e3f4bd","sha256":"e651f403e953fe9ab60601bc097dfce20f61e5948a483056abb9bce40dd81eb7","sha512":"752e3d5000f671a13feafb2e21fec7e6796e779bb130bdefb97458d6755c6ff46185d2d4b95dee36a758dfe1a754f808fd5cd032c2e5e4c1b13a7680edbf8762","ssdeep":"","tlshash":"57f0506918958ce9fd03c05158d37afae7bda833d089dc5850fd6b1c826f6a12541e2b","first_seen":"2026-06-10T04:55:52.518291Z","last_seen":"2026-06-11T20:21:03.129528Z","times_seen":3,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":164,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/brs/api/getProject/44fffb3d-56d9-410b-8558-99c72d6aca9c","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.522Z","timestamp":1781209229522,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /brs/api/getProject/44fffb3d-56d9-410b-8558-99c72d6aca9c HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nCache-Control: no-cache\r\nAuthorization: Bearer undefined\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/json; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: *\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12662,"size_decoded":12871,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"4f24f6cf2e6a11c59915e7f072890518","sha1":"6a51263ec5eb8e7fcbba94f8f3ac12a575754aed","sha256":"2f2a5505f7751b46aba780275982d854ef4eec6e9f92a33749ca63c6ca5c3f72","sha512":"ac303213692c16abc9e455e7a26971091a985978ef04faf63eeef3b2f4df70152c25e14c2cf56c98ae314a0f9eddea2630a654198e8b457d2ef662863391dfb4","ssdeep":"192:jzEj8fA8WjT3g3rDFSeLZz5VFjo5f8/23xjSalNwvbxdFcpB9PsvTOFK04NO3UsV:jauATeL5Fj/M2oNXn9k0Z4NSl","tlshash":"8642d70678442abfca537ea33cab6a257029a4ddf0f49ccd9194cdc86d19dc45133eba","first_seen":"2026-06-10T04:55:52.486308Z","last_seen":"2026-06-11T20:21:03.130042Z","times_seen":3,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":164,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/6801.4c1cc07c3bdffe5e.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.723Z","timestamp":1781209229723,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /6801.4c1cc07c3bdffe5e.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 57228\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-df8c\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":57228,"size_decoded":57533,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (57228), with no line terminators","md5":"2f4b51cbada9ce17c28b5bbbd2856c5b","sha1":"118a45b66c0a6388613d431fa0a08f3570d6e67f","sha256":"399e8b65e2c7052cdb29f8042f9c67bd0f13148313195303706230e69f16366b","sha512":"ef2bac17036cc7fec4eef6b3a070a1947b6c9f9df006dcdfc7260d46f8355820953242f7bc560fb417c5cdce18f3fc3bfd0d3866cc31bdf92c0896293ee3bec9","ssdeep":"1536:4tmdti67G2LpXJQcz/r3buDf5dEmGVoc6ZP:16rZP","tlshash":"cb43ca579581a4f713e629f0ab6fa50263944d85ad098180f39ccca77bfc58c63a3e7c","first_seen":"2026-02-11T09:30:36.558532Z","last_seen":"2026-06-11T20:21:03.131002Z","times_seen":51,"resource_available":true,"data":null}},"time_used":265,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":233,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/2347.f29693ee0d302577.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.730Z","timestamp":1781209229730,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /2347.f29693ee0d302577.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:29 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 65315\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-ff23\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65315,"size_decoded":65620,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65315), with no line terminators","md5":"ba2c13eac0e88b57bb39352cdf76f165","sha1":"e0adab179abb8a6ad59cc557a043e182361a10b9","sha256":"772eb109840fb67a06dcfe14c5661bc3d46556cdd0f4206ab9555fbea3739878","sha512":"fa9ecf9a88e03dea10e6433a65e6fd262c82d36df03575f98cbf9cb06e46d8076898dbb710fb7782c50f29552ba417ea253f207d1d6005daa0652ca4a78e473d","ssdeep":"1536:FDyrK2JFXbMLJYHF1kuMll529CAKEjcmpV5rmO0z8QDP:MVFXMIF85O8BXz8k","tlshash":"b453ea49325371214eed4c9ddcf5098ab2254f38a50101edb27e9eed3aedd09b23673a","first_seen":"2025-11-12T03:41:30.814006Z","last_seen":"2026-06-11T20:21:03.132127Z","times_seen":56,"resource_available":true,"data":null}},"time_used":280,"timings":{"blocked":-1,"dns":0,"connect":32,"send":0,"wait":211,"receive":44,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/common.2506177d324cc13c.js","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:29.742Z","timestamp":1781209229742,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /common.2506177d324cc13c.js HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:30 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 41970\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-a3f2\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":41970,"size_decoded":42275,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (41970), with no line terminators","md5":"bc8cfb6fa05ac43c41d1b856cc439594","sha1":"cdd0f9d94f60205728e8978db864631d151e9e1c","sha256":"2d1dd65f7e8c77653dc5bd1dacae4624ccdf3e2dab54febf97373a3213f9b0c7","sha512":"ec732b3c639bac6694bbf9ec165d651762925818b0649d04bcc9bab76bfce54caf155d6b669061b63250f2297fd88b2e0822fa5af40e5f4f30a749502a89f9e4","ssdeep":"768:8VdzdjfdFwrexzMv7aCTfYjn5FZ3EzCErm2oKsU9xem:Wzq8p4bcm","tlshash":"071385f2c62450dd33a1c8439613b3086c68f571d852c999fb5dacac8ae2fee528577c","first_seen":"2026-02-11T09:30:36.555035Z","last_seen":"2026-06-11T20:21:03.132611Z","times_seen":51,"resource_available":true,"data":null}},"time_used":468,"timings":{"blocked":262,"dns":0,"connect":0,"send":0,"wait":203,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webtrader.possares-renoyx.com/icomoon.88084cdf1f5e7b99.ttf?ml7oqx","fqdn":"webtrader.possares-renoyx.com","domain":"possares-renoyx.com","tld":"com"},"ip":{"addr":"193.149.187.123","port":443,"asn":399629,"as":"BLNWX","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://webtrader.possares-renoyx.com/","date":"2026-06-11T20:20:31.392Z","timestamp":1781209231392,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.possares-renoyx.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Fri, 27 Feb 2026 00:00:00 GMT","end":"Wed, 09 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"2D:C6:8B:BE:64:71:C2:0E:C3:5A:3F:F3:CC:20:24:AD:92:BE:12:39","sha256":"03:D6:9A:31:83:05:5A:81:D1:03:B2:04:26:6E:50:63:C0:8D:1E:C5:CD:EB:BD:8E:11:52:C5:55:DE:71:97:F8"}}},"request":{"raw":"GET /icomoon.88084cdf1f5e7b99.ttf?ml7oqx HTTP/1.1\r\nHost: webtrader.possares-renoyx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://webtrader.possares-renoyx.com/styles.3ec2a20c30c77d74.css?v=2.3.8\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 11 Jun 2026 20:20:31 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 13172\r\nConnection: keep-alive\r\nLast-Modified: Fri, 27 Feb 2026 09:38:55 GMT\r\nETag: \"69a1662f-3374\"\r\nCache-Control: public, max-age=2592000, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13172,"size_decoded":13479,"mime_type":"application/octet-stream","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 14 names, Macintosh, type 1 string, icomoon    ","md5":"d7007bb286f680fb5376db252feb84dc","sha1":"8940ebfe6f04097b88b283f5220c20df48d7a7c5","sha256":"ca48a4893c651f5f7a70e7615363432cf60fe9e424cba7f72c1ddec03bcf95f2","sha512":"e7b48c11a914c8c759764e0f0fb96ff618d197f126e93684c613224ea8ce1dfacd95184ea43061b12272e202ae0df1614cfa6279eda9c4f052fbab22a9e2273f","ssdeep":"384:elzqZ6PzMEOCnSEIScPbgfdld/wfzorBUbgod5:kWZ6PzMEOeSscPbgfdlJwfwB9K","tlshash":"2242e686db62fb99fc079b759d9b68540ef85f12c139e38353894d86a0054e81d3cf8e","first_seen":"2025-11-12T03:41:30.803302Z","last_seen":"2026-06-11T20:21:03.133114Z","times_seen":57,"resource_available":false,"data":null}},"time_used":161,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-11","alert":"Sinkholed","trigger":"webtrader.possares-renoyx.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}