{"report_id":"77fa2fa4-fe0e-4499-b03d-ab4a4b65d29c","version":0,"status":"done","tags":[],"date":"2026-06-25T12:52:18Z","url":{"schema":"http","addr":"claim-troncard.digital","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":0,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"https","addr":"claim-troncard.digital/","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"title":"TronLink Card | Spend Crypto Anywhere","dom":{"size":39473,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (30272)","md5":"23c035cafe693171ea81244006a5d138","sha1":"e164bc1311d5ccf0f71dcc840833eb3adf4be1a2","sha256":"e2e47008b0546f804fc79414cdb02384cf30bf788755a564cc8c3e6d9bae492d","sha512":"f0e9cf57c1107d845809e91ccc22a3cdf2d42f149f2fb321187a8496a8d37db80673a6396d41f585c73672176b2f04b3509d8991d262506698418f160bce3886","ssdeep":"384:BrTrRze8J0Ei7s2fI8fTMsEnQzP+ExB6y80W7TtdrBmN2u3T/6OIIBWk+ZJrBFi+:iI8bVq1gT//IIBDyJrCAv","tlshash":"3f036791a984d12bf667812f66c0e7083ae9e507edf3095cf02cd5908fd3e5e293e295","dom_hash":"domhash1827675c265f13ab747d656eb4e2dbbd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"claim-troncard.digital","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":0,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-30T12:52:18Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"claim-troncard.digital","ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-25T12:52:22.004055Z","last_seen":"2026-06-25T12:52:22.004055Z","alert_count":11,"request_count":11,"received_data":4314373,"sent_data":5605,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.22","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-21T22:19:08.810882Z","alert_count":0,"request_count":4,"received_data":253092,"sent_data":2272,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-21T22:22:12.048317Z","alert_count":0,"request_count":1,"received_data":4984,"sent_data":594,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"claim-troncard.digital/proxy.php?/api/tron/bundle.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"introduction_type":"importedModule","is_inline":false,"md5":"aac077b323c9bf22d7f7744ad76dc34b","sha1":"9123908ba46383e486fc02b362331a3eec527f57","sha256":"f0f21d961cd1084905a67ae2c9e6bb16865695cc076ce6eb60c6700cafd59a1a","sha512":"cc20dfb1d19807392f423b38dd0da047193e8d93b419dc8675e2df2867714d0b01ee6972ffe6ff9162695cf13d1aacfe9d9cede8b1a370ea8fc309cb25e04397","ssdeep":"49152:eWq89zRvRcffS8XRCvaTEUGib8/c3Y68tjUAyw3DgoUUbJ6a4ZKNRJj8IbPngLDH:R8u6IbP6fKCVAU86","tlshash":"c316c5047bf661364223f0b81e5fd815b228940b514ddd9dba9c82f05f89578cbfabe8","size":4183033,"data":"","first_seen":"2026-06-15T14:41:24.618491Z","last_seen":"2026-06-25T12:52:40.542411Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/js/main.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ef7dcf4999ee3c0f8a68980177237c72","sha1":"6d03c6d7f698858098b57969d6a310e694dfd56d","sha256":"a4c171231073f8ba3e98ff037a57a739f7b60134d80ac65182f0ed4827712bc1","sha512":"d8ea5c030ba238a8168bea94ed56a45b64486779780aaacddff3e6da0c214e2a1e94ecfded08b7c02d67ff4348ee4979de73a94c489b01bf7b5e41e0e8d61e0f","ssdeep":"96:RlYRNhDFQwT3d8p34dRdol6kkoMRCpBpFnM+TiJKaN4IhVxcIxhJp8xz:XgLF78t4dRC6kkoMRKBPM0iVNZTxcGJ4","tlshash":"15a10d0e78f2307344b772fa979fa68576210017040aca023dacdf950fa0b7a19b66ed","size":4670,"data":"","first_seen":"2026-06-25T12:52:37.934747Z","last_seen":"2026-06-25T12:52:40.505573Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/proxy.php?/api/loader-selfhost.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"bbc38598be693913184d25a6f22300fe","sha1":"d799d86181be0ec354a3092dd6a8511b09a5e274","sha256":"7798c95d2e28c8c27c7d54780774b159ab84f48ea9423c33e3596bc29b370535","sha512":"ccfb1496b3eab3e4ed0e771cb8c9a1961a64916209e34eb4a16c0cb9b1998f88194c4ebf0d717ff4055dd63ab54b329ecc99c2ab196314a1f165b4687271753d","ssdeep":"1536:fRZf+VuNHvK7cbQj+e/UPXWXBs76BHsEspOkYsCe9YoXrDRP07:WoOlHqa","tlshash":"1263c75916e3a03f531750a50e0fa0a0f15dea577a4ec58d73bca1a03f4a9314abfe78","size":67752,"data":"","first_seen":"2026-06-25T12:52:37.932882Z","last_seen":"2026-06-25T12:52:40.517662Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"error","text":"[TomoWalletAdapter] Only supported in mobile app for now","filename":"https://claim-troncard.digital/proxy.php?/api/tron/bundle.js","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"claim-troncard.digital/","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-25T12:51:51.799Z","timestamp":1782391911799,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: text/html\r\nlast-modified: Tue, 23 Jun 2026 15:29:52 GMT\r\netag: W/\"6a3aa670-22b9\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":8889,"size_decoded":2492,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"3b6d16c62578142ec0f4b740f46b4e45","sha1":"c42874c565e5e1eeedbadafc5dbf41543ed94fd2","sha256":"61a843af6d2332557957e7a469ec06c6a6ab62047109d9e93210c41a3cbbcf72","sha512":"8319870f1a212eebc315f80774dddc99548eb154eba4014ecb9e658ac893b7182f4201963b29f36c1901d2dba7aaeb4c4d2b84633a48ac978944d20caf9d2173","ssdeep":"192:Vr0pEOIIBWXG4pY2vt2Fi4dMlVzuTldWm:VrNOIIBWW4j12FinyTlv","tlshash":"6402eea170f8603b429782d636626bbb7ee1d513d94a015033fd0bf44fa7d83a82764e","first_seen":"2026-06-25T12:52:37.929168Z","last_seen":"2026-06-25T12:52:40.504377Z","times_seen":2,"resource_available":true,"data":null}},"time_used":276,"timings":{"blocked":-1,"dns":183,"connect":26,"send":0,"wait":34,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.703Z","timestamp":1782391912703,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://claim-troncard.digital\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 62460\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 21 Jun 2026 16:32:24 GMT\r\nexpires: Mon, 21 Jun 2027 16:32:24 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332368\r\nlast-modified: Wed, 10 Sep 2025 16:30:17 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":62460,"size_decoded":63273,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 62460, version 1.0","md5":"4c04ee82dc1deb4f32b244195d258e9b","sha1":"9bd2bc9c6f54075acd20589f87c17a73e3ab07b3","sha256":"ab72fd10c9ac5633c1f9ae4267864b674596062e023458e02973080bd1098904","sha512":"43bd417c75382fbcad7a44c73db7ec8e883bb505b63215ec67488eb205b61acd94031d5740bdf70cf413fcb126ac6a567b4c71831eeb063e5643fa0adc704895","ssdeep":"1536:Hjv9lkTtdw0aS3yPvWdfDSFdW6KK8zPJ86DQMBXQX:Hz9ceS3y2FDSFdRKNzPJj5gX","tlshash":"8753028264d3489c8c8b69d354847f1c707ef88fc1b88995a8e33ca14d4b1e6e85ad7f","first_seen":"2025-09-11T19:26:36.805532Z","last_seen":"2026-06-26T18:34:08.348336Z","times_seen":20780,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":29,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/proxy.php?/api/main","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.952Z","timestamp":1782391912952,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"POST /proxy.php?/api/main HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://claim-troncard.digital/\r\nContent-Type: application/json\r\nContent-Length: 116\r\nOrigin: https://claim-troncard.digital\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:53 GMT\r\ncontent-type: application/json; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin\r\naccess-control-allow-origin: https://claim-troncard.digital\r\naccess-control-allow-credentials: true\r\ncontent-security-policy: upgrade-insecure-requests\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N3wjotr3kZjB2zBzFdTVUywpv12qdGIlWNLmht4cS7%2BWYsWwbG5J4SzolVF%2Fl6eCzCMhLhq%2FknpMNAS8nR5jcC2VDPLMK6deyr2RH2G7%2FhAbGHHRjTzvoFqtA8J8\"}]}\r\ncontent-encoding: zstd\r\ncf-ray: a1141b305e626631-AMS\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-powered-by: PHP/8.4.22, PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.4.22","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1638,"size_decoded":1590,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"53ebf085fc5a3058771726a8a51daf53","sha1":"3a5b6fbca765bfa68e31dd937d6aa9d044a9daa3","sha256":"7cd4d9fc1825cca9a117d50dcf57883d0210467bae5054bcdcd1f8a30e390850","sha512":"ec50502dddd3b111d451548ef0ec2730871fcc9e6d2a37188c4cbddee2e29b5435fe317064f6347f080afd71266d035795c9aa12d79d4f029c4e6344b8e600cb","ssdeep":"","tlshash":"2331e05213102b3553c65345ea5e3f6a59be0273a38078b5ab9d801906f2aaea5631d3","first_seen":"2026-06-25T12:52:37.930917Z","last_seen":"2026-06-25T12:52:40.508571Z","times_seen":2,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/css/style.css","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.561Z","timestamp":1782391912561,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /css/style.css HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 23 Jun 2026 15:29:46 GMT\r\netag: W/\"6a3aa66a-6cad\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":27821,"size_decoded":5806,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (357)","md5":"08cf7330ff2613c2322256902995ce31","sha1":"84eeb16ecf3af2429a6271fb6d12a1d69ab0f68a","sha256":"13a110b9cc6c9b07991cf9924e5fe4a84652acb0f35be9ab34a29d1ee3abc93f","sha512":"b4c7f08db2ca83325231936b6352207ef4b1f133c2867968170b30e050448693852326273c0ed54e94b52559d41ca7b88cf32178827aadbf8eea903535820e01","ssdeep":"768:v83IF6PmTGVe4VftjcLdpejhb7pj0QUQQ:cIQPEGVe47cpEjhb7pjJUQQ","tlshash":"c9c283d927a5111c792bd4a46ae39b08633cd043e50ecdbcb7e6104cefc52dd22a7b99","first_seen":"2026-06-25T12:52:37.931944Z","last_seen":"2026-06-25T12:52:40.537316Z","times_seen":2,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/proxy.php?/api/loader-selfhost.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.563Z","timestamp":1782391912563,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /proxy.php?/api/loader-selfhost.js HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncontent-disposition: inline; filename=\"loader-selfhost.js\"\r\ncontent-security-policy: upgrade-insecure-requests\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F%2BO7O%2BUPmbFkaFkZ7JQkNvleLeqZ%2BrLbTEO%2FI85%2BLyAV0su%2F0CmpxSNYihOn1XchP18E8ODYroWL51W5OPLo413w4YhaCnQvUb388UHEudOlFctLU8wBEs3ZmUV8\"}]}\r\ncontent-encoding: zstd\r\ncf-ray: a1141b2dfc28fba9-AMS\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Thu, 25 Jun 2026 12:51:52 GMT\r\nx-powered-by: PHP/8.4.22, PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.4.22","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67752,"size_decoded":22917,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (6833)","md5":"bbc38598be693913184d25a6f22300fe","sha1":"d799d86181be0ec354a3092dd6a8511b09a5e274","sha256":"7798c95d2e28c8c27c7d54780774b159ab84f48ea9423c33e3596bc29b370535","sha512":"ccfb1496b3eab3e4ed0e771cb8c9a1961a64916209e34eb4a16c0cb9b1998f88194c4ebf0d717ff4055dd63ab54b329ecc99c2ab196314a1f165b4687271753d","ssdeep":"1536:fRZf+VuNHvK7cbQj+e/UPXWXBs76BHsEspOkYsCe9YoXrDRP07:WoOlHqa","tlshash":"1263c75916e3a03f531750a50e0fa0a0f15dea577a4ec58d73bca1a03f4a9314abfe78","first_seen":"2026-06-25T12:52:37.932882Z","last_seen":"2026-06-25T12:52:40.517662Z","times_seen":2,"resource_available":true,"data":null}},"time_used":309,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":309,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/images/tronlink-card.svg","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.570Z","timestamp":1782391912570,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /images/tronlink-card.svg HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 4002\r\nlast-modified: Tue, 23 Jun 2026 15:14:55 GMT\r\netag: \"6a3aa2ef-fa2\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":4002,"size_decoded":4254,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"89acbedd51d78e3946ad6d949ae42dfc","sha1":"ca5378adad2f1eb216e2a5ee26c997a5e04b585d","sha256":"1a01b0696bbd4bcd2391e0906ad73bfa0a6da151d2e933deead53f0a08d68349","sha512":"842e216162f25c0e31a1c2a584136e8d30e671de44eab9edb26c5afff8f6875c9dbae877f8f13530867a6e3375e09f481937be0fb396fece3f9c76b7a84b71cf","ssdeep":"","tlshash":"2981bd65eaed9837d218828de741e4553b2d46c38b41c760b01eaf5e6f298874e0f3b8","first_seen":"2026-06-25T12:52:37.933794Z","last_seen":"2026-06-25T12:52:40.522082Z","times_seen":2,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.698Z","timestamp":1782391912698,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://claim-troncard.digital\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 62460\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 21 Jun 2026 16:32:24 GMT\r\nexpires: Mon, 21 Jun 2027 16:32:24 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332368\r\nlast-modified: Wed, 10 Sep 2025 16:30:17 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":62460,"size_decoded":63273,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 62460, version 1.0","md5":"4c04ee82dc1deb4f32b244195d258e9b","sha1":"9bd2bc9c6f54075acd20589f87c17a73e3ab07b3","sha256":"ab72fd10c9ac5633c1f9ae4267864b674596062e023458e02973080bd1098904","sha512":"43bd417c75382fbcad7a44c73db7ec8e883bb505b63215ec67488eb205b61acd94031d5740bdf70cf413fcb126ac6a567b4c71831eeb063e5643fa0adc704895","ssdeep":"1536:Hjv9lkTtdw0aS3yPvWdfDSFdW6KK8zPJ86DQMBXQX:Hz9ceS3y2FDSFdRKNzPJj5gX","tlshash":"8753028264d3489c8c8b69d354847f1c707ef88fc1b88995a8e33ca14d4b1e6e85ad7f","first_seen":"2025-09-11T19:26:36.805532Z","last_seen":"2026-06-26T18:34:08.348336Z","times_seen":20780,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":29,"send":0,"wait":17,"receive":49,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.700Z","timestamp":1782391912700,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://claim-troncard.digital\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 62460\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 21 Jun 2026 16:32:24 GMT\r\nexpires: Mon, 21 Jun 2027 16:32:24 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332368\r\nlast-modified: Wed, 10 Sep 2025 16:30:17 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":62460,"size_decoded":63273,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 62460, version 1.0","md5":"4c04ee82dc1deb4f32b244195d258e9b","sha1":"9bd2bc9c6f54075acd20589f87c17a73e3ab07b3","sha256":"ab72fd10c9ac5633c1f9ae4267864b674596062e023458e02973080bd1098904","sha512":"43bd417c75382fbcad7a44c73db7ec8e883bb505b63215ec67488eb205b61acd94031d5740bdf70cf413fcb126ac6a567b4c71831eeb063e5643fa0adc704895","ssdeep":"1536:Hjv9lkTtdw0aS3yPvWdfDSFdW6KK8zPJ86DQMBXQX:Hz9ceS3y2FDSFdRKNzPJj5gX","tlshash":"8753028264d3489c8c8b69d354847f1c707ef88fc1b88995a8e33ca14d4b1e6e85ad7f","first_seen":"2025-09-11T19:26:36.805532Z","last_seen":"2026-06-26T18:34:08.348336Z","times_seen":20780,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":23,"dns":0,"connect":0,"send":0,"wait":20,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.705Z","timestamp":1782391912705,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:09 GMT","end":"Mon, 31 Aug 2026 08:38:08 GMT"},"fingerprint":{"sha1":"AD:F1:0B:84:58:92:40:26:B7:10:85:A1:EA:3E:80:1E:FD:E6:A8:F3","sha256":"8F:94:50:CA:96:9B:D0:F9:09:5A:E2:3D:DC:C3:5D:F5:E0:80:CB:17:17:30:2C:CF:86:BD:FB:8B:1B:0B:6D:DE"}}},"request":{"raw":"GET /s/dmsans/v17/rP2Hp2ywxg089UriCZOIHTWCBl0-8Q.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://claim-troncard.digital\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 62460\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sun, 21 Jun 2026 16:32:24 GMT\r\nexpires: Mon, 21 Jun 2027 16:32:24 GMT\r\ncache-control: public, max-age=31536000\r\nage: 332368\r\nlast-modified: Wed, 10 Sep 2025 16:30:17 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":62460,"size_decoded":63273,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 62460, version 1.0","md5":"4c04ee82dc1deb4f32b244195d258e9b","sha1":"9bd2bc9c6f54075acd20589f87c17a73e3ab07b3","sha256":"ab72fd10c9ac5633c1f9ae4267864b674596062e023458e02973080bd1098904","sha512":"43bd417c75382fbcad7a44c73db7ec8e883bb505b63215ec67488eb205b61acd94031d5740bdf70cf413fcb126ac6a567b4c71831eeb063e5643fa0adc704895","ssdeep":"1536:Hjv9lkTtdw0aS3yPvWdfDSFdW6KK8zPJ86DQMBXQX:Hz9ceS3y2FDSFdRKNzPJj5gX","tlshash":"8753028264d3489c8c8b69d354847f1c707ef88fc1b88995a8e33ca14d4b1e6e85ad7f","first_seen":"2025-09-11T19:26:36.805532Z","last_seen":"2026-06-26T18:34:08.348336Z","times_seen":20780,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":35,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/js/main.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.565Z","timestamp":1782391912565,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: text/javascript\r\nlast-modified: Tue, 23 Jun 2026 15:27:46 GMT\r\netag: W/\"6a3aa5f2-123e\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":4670,"size_decoded":1595,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"ef7dcf4999ee3c0f8a68980177237c72","sha1":"6d03c6d7f698858098b57969d6a310e694dfd56d","sha256":"a4c171231073f8ba3e98ff037a57a739f7b60134d80ac65182f0ed4827712bc1","sha512":"d8ea5c030ba238a8168bea94ed56a45b64486779780aaacddff3e6da0c214e2a1e94ecfded08b7c02d67ff4348ee4979de73a94c489b01bf7b5e41e0e8d61e0f","ssdeep":"96:RlYRNhDFQwT3d8p34dRdol6kkoMRCpBpFnM+TiJKaN4IhVxcIxhJp8xz:XgLF78t4dRC6kkoMRKBPM0iVNZTxcGJ4","tlshash":"15a10d0e78f2307344b772fa979fa68576210017040aca023dacdf950fa0b7a19b66ed","first_seen":"2026-06-25T12:52:37.934747Z","last_seen":"2026-06-25T12:52:40.505573Z","times_seen":2,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/images/logo1.png","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.681Z","timestamp":1782391912681,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /images/logo1.png HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: image/png\r\ncontent-length: 4604\r\nlast-modified: Tue, 23 Jun 2026 15:14:55 GMT\r\netag: \"6a3aa2ef-11fc\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":4604,"size_decoded":4853,"mime_type":"image/png","magic":"PNG image data, 411 x 93, 8-bit/color RGBA, non-interlaced","md5":"ada382591f201ed32ec1b3a29f8e4f8e","sha1":"871967f2af88440e64a5643ec2bccdf4eca3d616","sha256":"ebb41554660f37e73b9237fa7a4db56b1bce59876647bcfa81ba9617be131521","sha512":"5d07c03a077833463c52ab021b7eff8f74410e1ebf7da26783c5244ac9d00b9c496adb839960ad8792df9b3c82c277da6dfc126c983bedc652ad9bad70113c2f","ssdeep":"96:RS5w6sD+2+a1V/aOVK+AA2AKOWUl7McpUEbS62cFLmaJp5LXBVEEpSvjVP3lOb:RS5w6j23143kTlJl7McLbS6HFL77lkRK","tlshash":"43917c9dce0cbe1b446f5680818c0bd65a3c7d464286be206363b775234fd002e9ba98","first_seen":"2026-03-03T13:05:05.990443Z","last_seen":"2026-06-25T12:52:40.518604Z","times_seen":5290,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/proxy.php?/api/tron/bundle.js","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:53.194Z","timestamp":1782391913194,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /proxy.php?/api/tron/bundle.js HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/proxy.php?/api/loader-selfhost.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:53 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin\r\ncache-control: public, max-age=14400\r\ncontent-security-policy: upgrade-insecure-requests\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J1scIAXcleaHRt93HB0pANqIN76QB%2BBBkyjM2pDkMmTiXjHBKBIWKyyEg%2FLIdYGxJCcCIvZ%2BnunPpCjmLHBQPH%2Fucst3s%2FsXJLw3JeKXYJbFUg1eJYdXF3H6S7PL\"}]}\r\ncf-cache-status: EXPIRED\r\ncontent-encoding: zstd\r\ncf-ray: a1141b31fda6d0dd-AMS\r\nalt-svc: h3=\":443\"; ma=86400\r\nlast-modified: Thu, 25 Jun 2026 12:51:53 GMT\r\nx-powered-by: PHP/8.4.22, PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.4.22","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4183033,"size_decoded":940976,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8669)","md5":"83c3b7c0d6c81b06983c9a03249b1998","sha1":"678ca877958066b6460c63d25ffb7a8b2524fd2d","sha256":"a0ed17cf35859993e050fdb248479258ebda67bb6f47ab4b4e7ef551bb114089","sha512":"1c519a895923a45e8e4ca1075ef229b516a9d884f786487f591f3f926f390208f3fb56f1086491d0d687688c5ce7183da6b0bf838384fee425710b2a1d6e17c2","ssdeep":"24576:lBaCgVarJvp8Wq8KkzRvRcffS8XRCvaj/EUGib8/Zu3Y68tjUAyw/:eWq89zRvRcffS8XRCvaTEUGib8/c3Y6k","tlshash":"3c25920567f720354227f0792e0fd815b228a40b258ddd5d7a9c42f4af89538cbfaee9","first_seen":"2026-06-15T14:41:24.580185Z","last_seen":"2026-06-25T12:52:40.507714Z","times_seen":3,"resource_available":false,"data":null}},"time_used":673,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":673,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,400;0,9..40,500;0,9..40,700;0,9..40,900;1,9..40,400\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.558Z","timestamp":1782391912558,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Jun 2026 08:38:10 GMT","end":"Mon, 31 Aug 2026 08:38:09 GMT"},"fingerprint":{"sha1":"8A:2F:DC:6F:C0:09:07:D3:E5:9C:B7:EE:C2:C4:63:DC:59:36:B5:1B","sha256":"64:7C:E4:55:AB:5C:58:7E:89:F1:19:3B:95:DB:7B:4B:E6:75:42:2C:0C:51:2E:66:85:F5:BB:51:58:08:39:19"}}},"request":{"raw":"GET /css2?family=DM+Sans:ital,opsz,wght@0,9..40,400;0,9..40,500;0,9..40,700;0,9..40,900;1,9..40,400\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Thu, 25 Jun 2026 12:51:52 GMT\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4300,"size_decoded":1177,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"fc0a64c5514c1f891429bc818e0177ae","sha1":"2d42e5e97135ac5f71424db4ec5bf4a960fbefb2","sha256":"f513ab02154a7d463bcc6f59dec45265435261f36dd1262439144d4eb6516046","sha512":"c04ff90cd2befad5a9a81e072a5980d84f1fff31c9b5526fbf346aef464afcb4281c8f59b5cf49433add97d2e8a3a1fbc2b3d6430f3af38a23b4d1717ae1e6df","ssdeep":"96:jYgEaJJc+ufYgEa/NkOEaepJc+ufOEawNkOXaepJc+ufOXawNkOpaepJc+ufOpaX:MOpVOpcDPc8hcGbcg7","tlshash":"dd91ce81047bb114db572cc122ce7e32ef1f619064549974bbfe2888fc9ac6e5361b4d","first_seen":"2026-06-25T12:52:37.937436Z","last_seen":"2026-06-25T12:52:40.516148Z","times_seen":2,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":-1,"dns":0,"connect":16,"send":0,"wait":34,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/images/page0-ball3.svg","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.684Z","timestamp":1782391912684,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /images/page0-ball3.svg HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 3443\r\nlast-modified: Tue, 23 Jun 2026 15:14:55 GMT\r\netag: \"6a3aa2ef-d73\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":3443,"size_decoded":3695,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b77621326adac34f23ea0cc8d49473a0","sha1":"d0b988fd44e4c5a40581424c7e125cca1345238e","sha256":"46ff581e35eb6e7a61ac1a6b0b0f22b9fa8c41cd0d76fca383a504b50b040984","sha512":"2c065fe1c78e33d2eabd3b50f3f7a95f9376a43164c63ea7c6656256c42e3cd85d0a10549b2e50c937a1d114614bd556db921cedaaeae0ec9e6733f058e5993c","ssdeep":"","tlshash":"c06101b105fe803e7806431ce3f090574f7e70afe1445849ba5f0615af3aa9ba59b745","first_seen":"2023-12-01T09:59:11Z","last_seen":"2026-06-25T12:52:40.51943Z","times_seen":188,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/images/page0-ball5.svg","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:52.685Z","timestamp":1782391912685,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /images/page0-ball5.svg HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/css/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:52 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 3445\r\nlast-modified: Tue, 23 Jun 2026 15:14:55 GMT\r\netag: \"6a3aa2ef-d75\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3445,"size_decoded":3697,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"63591e88790c04c7a5cfc2999d296daa","sha1":"65a5f1c6e121facf5c151addcaded58276a0989d","sha256":"68ea30fd122adee304b78171bb991825532e6f7645f286fda13ca918bce1e8cb","sha512":"9cb6b8639c446ad233ff8754a7ce0e57b5a9c3a0f8c782fe837e7f6509125b03be9700d4515a57f645285ee5e206692192a9486df010e66debcc9fdc0638aba6","ssdeep":"","tlshash":"e6610cb104fd803e6807471ce3e5d0574e7e20afe104580aba5f0629af3aa5be58b745","first_seen":"2023-12-01T09:59:11Z","last_seen":"2026-06-25T12:52:40.540486Z","times_seen":188,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"claim-troncard.digital/favicon.ico","fqdn":"claim-troncard.digital","domain":"claim-troncard.digital","tld":"digital"},"ip":{"addr":"31.56.209.3","port":443,"asn":25369,"as":"Hydra Communications Ltd","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claim-troncard.digital/","date":"2026-06-25T12:51:53.055Z","timestamp":1782391913055,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claim-troncard.digital","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Wed, 24 Jun 2026 11:01:00 GMT","end":"Tue, 22 Sep 2026 11:00:59 GMT"},"fingerprint":{"sha1":"0A:B3:43:34:22:D3:C4:FE:7E:84:2A:E7:B6:B8:3C:A2:7C:89:E5:5D","sha256":"26:62:60:77:70:C5:8C:BA:5C:A0:4E:C1:4C:97:FC:F4:BE:61:EA:29:BE:CA:8B:D7:7B:74:CE:DB:9E:0E:CA:24"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: claim-troncard.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://claim-troncard.digital/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Thu, 25 Jun 2026 12:51:53 GMT\r\ncontent-type: text/html\r\nlast-modified: Wed, 24 Jun 2026 10:57:29 GMT\r\netag: W/\"328-654fdbddf5df8\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":808,"size_decoded":579,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"a943672a32297727bab01c3e76977550","sha1":"3a667c4b7a457ef6c586cc581d533c128737bf53","sha256":"b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187","sha512":"0965d415f3a0cef31953702fdae345d46fefd72ce3c4c7a0255aede74a76e10b856892700529a444453a622793e0257248c5c99fae17d5b0b9fd4118e208068c","ssdeep":"","tlshash":"2e01bd0a08e0501bc0d3915169a0f22dc9c2f997aa5b180079ed91c6cfd5f89c9d35ac","first_seen":"2023-03-08T11:42:06Z","last_seen":"2026-06-26T14:48:33.258545Z","times_seen":37784,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-25","alert":"Sinkholed","trigger":"claim-troncard.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}