{"report_id":"9918a060-fef1-48f4-bd16-b90bdf88b41e","version":6,"status":"done","tags":[],"date":"2026-02-07T09:42:25Z","url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":0,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"final":{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"title":"Trezor Lite","dom":{"size":82393,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1310)","md5":"b8e78c9b25c27dfaea63c79076856b9c","sha1":"29bdb84330aa2a29b9039f7b3605fb63afbaaefb","sha256":"63f191e389fe4db4bb9bdd4b5de2c4606bd63a9286e329fa99bee2de2e7fe390","sha512":"78d6c92e6f6a5559f70ea259c24e1f285b3b4b53129ec47eb477b2b1a70a69c8ed7c10aa5a00823fcad6c0e3b0385f015745f0c167992b1993d32c03de538805","ssdeep":"1536:QYNbpA56I1AlnxEwhVH+UfyDnTyv7lK+bJfaGSiW:/bprnxRhbH7ldRaGY","tlshash":"ee832ca0f7ad1a352053508b67ea02d5b6be9133d617c4083ebdc6542fc6ca886737ec","dom_hash":"domhash02500cac493c64e12dd413728c0bcf1d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":0,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-14T09:42:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-02-01T22:32:08.727296Z","alert_count":0,"request_count":3,"received_data":330371,"sent_data":1526,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.staticfile.org","ip":{"addr":"118.107.44.62","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"domain_registered":"2013-03-29","domain_rank":851278,"first_seen":"2013-08-23T08:51:19Z","last_seen":"2026-02-05T01:20:55.682455Z","alert_count":4,"request_count":2,"received_data":178546,"sent_data":859,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"trezor82.cz","ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"domain_registered":"2026-02-04","domain_rank":0,"first_seen":"2026-02-07T09:04:23.942613Z","last_seen":"2026-02-07T09:04:23.942613Z","alert_count":122,"request_count":61,"received_data":1707451,"sent_data":33824,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap:4.5.0","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-01T22:17:46.954894Z","alert_count":0,"request_count":1,"received_data":6149,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"90d18f09721abbba9cc2ff728bf8373d","sha1":"b5191c91779499ec663b14b871446c1bb3ac43db","sha256":"9864bae7dc991c43e3aa1c365d7fd0acf785013086ec1ac282c8a452f276fcc0","sha512":"360cc1ba12974a02df3ee57326db0709da7ff72e0d55ed2e98a5ccd35ffc3af8678da0b5d9108fd52aea2424377a3572ef5c16c614805baaf89a70c76f001cc9","ssdeep":"384:ubYpA2XqL6znPJ4jJBWkauCDuU44eN0jhaPyDfxJsX5E5mpv3oMbBTYf+ke1T+Nz:uH+k6wfyDZJs6yv79TK+Qct9JfHs","tlshash":"83e23fd2f72c67360696415f77cf81e6f72a8129a22b850e387cc1191782db887b67f4","size":32007,"data":"","first_seen":"2025-08-05T13:52:07.051156Z","last_seen":"2026-03-07T01:24:38.312049Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"2b84faccb2660c256d784f0560961d18","sha1":"867594218f1a34cb1cbf4ea52ddc62628a9e1474","sha256":"ab76a06efd30fd7469dcc96b118adb9d3936b4480c2ae71a3788658bd197f358","sha512":"33d128cabb6d5abec47f3e46dddcc7ef1b821ed623cc5b146e65045ab7c1b5cd17c5223473914ce2286a5d3b0e8d66678263d6f630f6dd9c74def5eb5923a5cb","ssdeep":"","tlshash":"35210082c000082880a000380c82000020200000c00280200c0880e000280228002c08","size":1366,"data":"","first_seen":"2026-02-03T20:59:14.682418Z","last_seen":"2026-03-07T01:24:38.322444Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/layer/layer.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-06-08T11:10:22.725576Z","times_seen":13775,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/2.1.1/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"118.107.44.62","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"d021c983bd6e7291b43a5cc1fb2ebe99","sha1":"ffe47a16e4b1550ddfba3577cc9cc9fdc8643aff","sha256":"c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079","sha512":"0b01d408ae79a4e3630f1bcf6507aec0aa71a2cf263f212ff601ae582f15af4df9ec9dae5e0d4fc9c1833cd0fd1207689121531ba920480a680e3f4e336da4b3","ssdeep":"1536:kPEkjP+iADIOr/NEe876nmBu3HvF38Nd+uJO1z6/A4TqAub0i4ULvguEhjzXpa9G:7NMnJiz6oAQKP5a98HrB","tlshash":"5983d6d9b6c27062977734b850bf410bb17a98dab80c8c60f0a4d5e47eb4a8d517bf2d","size":84280,"data":"","first_seen":"2023-03-07T12:01:55Z","last_seen":"2026-06-08T10:44:53.486393Z","times_seen":10049,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","size":11264,"data":"","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-06-08T05:17:00.628553Z","times_seen":13820,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/layer/layer.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","size":19831,"data":"","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-06-08T11:10:22.725576Z","times_seen":13775,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","size":78748,"data":"","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-06-08T09:16:31.274467Z","times_seen":7768,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"1a455de02073fd4a3295d37fb624c54d","sha1":"6249746fc9169eb1e4a255364e43403382e8f298","sha256":"7352def227e03cb2963b2563e2d101a8193a05d1f08ac5850d0d71dbaa6b8960","sha512":"77745b2ed704f7130ee08570d459a3a0e8ceac0ecbea8b5050f1a5cd5e8d32c1a856e1b3204d5ce913eb2ed48551adf92c98b511e7507b87e4e94ab59550ab11","ssdeep":"","tlshash":"70210080c8000c00808000b82c82003020202020c00080000800808022080028a0080a","size":1360,"data":"","first_seen":"2026-02-03T20:59:14.674049Z","last_seen":"2026-03-07T01:24:38.316862Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"20523e78bae2cebbef388c9ef84ec2f9","sha1":"29093cf5f97a20d8297b3554d07f2926d8df98d2","sha256":"8a6cfe4c6857b79cfcf6f200c8d00b064aa443b7e529332cbf064cb183c938cc","sha512":"182e396a3aafaf2b5f18070a8ed0e76efc7e8f1cb8eb37865ac4b294f0a8c933c3e9a72531506bfc732fa9f5f3a4acaa7a1a21adbb0849c63870b3f2e934a2f6","ssdeep":"192:Z+9wKCCBm9wKCC1u9wKCCXO9wKCC9u9wKCCssxI9wKCC7O9wKCCeQi9wKCCTo9ww:Z+vm7uVOrur+JOAQihoTuhK5Mh8N","tlshash":"1822b46cf993286c789334258f6f005438e87547cb49d4193eada8c26f8850da5bbfde","size":10286,"data":"","first_seen":"2023-04-30T10:40:57Z","last_seen":"2026-06-04T15:30:27.668451Z","times_seen":2918,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"39d4f19f9c0926dc38317fdf3f7b8fde","sha1":"128672a3e06b80d958284f3cb65a4fba41776c7b","sha256":"9edfe06057d81559a8045e1fdca8bbd51d78fb238d39e50a42e0e70182b45918","sha512":"293d0ca6d88e91703c076e7e8e2096d170455a198393f63e42af06ade1194ce80aff62e551ede237514a9b5f12810be3013cfd1e7d164b74ad86d339ee4091e2","ssdeep":"","tlshash":"9c116b05a70b2cd828f3996f1f5384120c3624136887ca243f4d97e09fe9e939469d5d","size":1090,"data":"","first_seen":"2023-04-30T10:40:57Z","last_seen":"2026-06-01T14:38:20.597785Z","times_seen":1100,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"15e459c4a476ec4c974b66aff3e47dc1","sha1":"6b15a407ca1f46fa427b91962554dc0415f49301","sha256":"e936aceb3c5503a563bf15b3dfead2b70c498b4af20e93fcb1df1b11a5121c3f","sha512":"0d438ee83bdbc1f8a6b80ea250d34478c9d54969ec34fca992af11c5ad6cbeea35d48d32dc9780fe2379b3bdc21f5ffac7497a80df1e7124cc4bf52395cb6e8e","ssdeep":"","tlshash":"762100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1354,"data":"","first_seen":"2026-02-03T20:59:14.667187Z","last_seen":"2026-03-07T01:24:38.31353Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"15e459c4a476ec4c974b66aff3e47dc1","sha1":"6b15a407ca1f46fa427b91962554dc0415f49301","sha256":"e936aceb3c5503a563bf15b3dfead2b70c498b4af20e93fcb1df1b11a5121c3f","sha512":"0d438ee83bdbc1f8a6b80ea250d34478c9d54969ec34fca992af11c5ad6cbeea35d48d32dc9780fe2379b3bdc21f5ffac7497a80df1e7124cc4bf52395cb6e8e","ssdeep":"","tlshash":"762100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1354,"data":"","first_seen":"2026-02-03T20:59:14.667187Z","last_seen":"2026-03-07T01:24:38.31353Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/1.10.2/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"118.107.44.62","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"e0e0559014b222245deb26b6ae8bd940","sha1":"e2f3603e23711f6446f278a411d905623d65201e","sha256":"89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e","sha512":"60740da8f871b8263675db2421b0e565fc18e95c772f7c3d5916f224263cd71a6a2e6acceab2f6f8ba1c0607951f0198f525d87d0589fa57045b1d5f292dacf0","ssdeep":"1536:q4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RlfDknv+p0WzH/IoSZ7qABZnu0sFv:qGsKXlI2p0WPSbDrstfam","tlshash":"ba93f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","size":93100,"data":"","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-08T12:36:30.472814Z","times_seen":20850,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"fbbb012e519b910a02da83ac6d3112da","sha1":"a03af70ac8200203516bb605834e1e3a1a061948","sha256":"b3f004b5887b020f0abc7d1046d655e1b275a9eb354f05212175561521105a47","sha512":"5c76b4a0f8abfa543ae0c28835d8685715b0899a787e39f251d28a06484c9f51a0de7dc1fc258b4891080768550ee830e5b0594bbac8a8e61594d117ce751b80","ssdeep":"","tlshash":"6cf0c96e0a1ed7ff70a80235532aa2ef70cd4baa90076807fe87021716ac118bc01ea1","size":527,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-06-04T15:30:27.669974Z","times_seen":6997,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"15e459c4a476ec4c974b66aff3e47dc1","sha1":"6b15a407ca1f46fa427b91962554dc0415f49301","sha256":"e936aceb3c5503a563bf15b3dfead2b70c498b4af20e93fcb1df1b11a5121c3f","sha512":"0d438ee83bdbc1f8a6b80ea250d34478c9d54969ec34fca992af11c5ad6cbeea35d48d32dc9780fe2379b3bdc21f5ffac7497a80df1e7124cc4bf52395cb6e8e","ssdeep":"","tlshash":"762100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1354,"data":"","first_seen":"2026-02-03T20:59:14.667187Z","last_seen":"2026-03-07T01:24:38.31353Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"15e459c4a476ec4c974b66aff3e47dc1","sha1":"6b15a407ca1f46fa427b91962554dc0415f49301","sha256":"e936aceb3c5503a563bf15b3dfead2b70c498b4af20e93fcb1df1b11a5121c3f","sha512":"0d438ee83bdbc1f8a6b80ea250d34478c9d54969ec34fca992af11c5ad6cbeea35d48d32dc9780fe2379b3bdc21f5ffac7497a80df1e7124cc4bf52395cb6e8e","ssdeep":"","tlshash":"762100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1354,"data":"","first_seen":"2026-02-03T20:59:14.667187Z","last_seen":"2026-03-07T01:24:38.31353Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/scripts.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":false,"md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","size":298,"data":"","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-06-04T15:30:27.648543Z","times_seen":6129,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"6999298f20c7dca215f2dc16e8adbd6f","sha1":"6805493e9826a79437b6eb219dc4d3ca1e8455c5","sha256":"011df312ead72aef173de1968a58dd97df727a9207dc1147ed8aef12f5062570","sha512":"8c24361091d894d9b879074f05e138b67d7fc5076c31ed0e1f0ef6f9d686cdcf219ad22120d8a51de0d671206248dd5d7882eeabaf802a927bedd903209a2e44","ssdeep":"","tlshash":"6a210080c020cc00808000382cc2000220300000c00288300c008080000c823c0a8808","size":1359,"data":"","first_seen":"2026-02-03T20:59:14.67663Z","last_seen":"2026-03-07T01:24:38.323173Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"6999298f20c7dca215f2dc16e8adbd6f","sha1":"6805493e9826a79437b6eb219dc4d3ca1e8455c5","sha256":"011df312ead72aef173de1968a58dd97df727a9207dc1147ed8aef12f5062570","sha512":"8c24361091d894d9b879074f05e138b67d7fc5076c31ed0e1f0ef6f9d686cdcf219ad22120d8a51de0d671206248dd5d7882eeabaf802a927bedd903209a2e44","ssdeep":"","tlshash":"6a210080c020cc00808000382cc2000220300000c00288300c008080000c823c0a8808","size":1359,"data":"","first_seen":"2026-02-03T20:59:14.67663Z","last_seen":"2026-03-07T01:24:38.323173Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"f2d2281be618aceba847ebf55e581e8e","sha1":"200264c23588765f13c4a6087de28e0082650564","sha256":"d55e01f0b00962f492bf30eca864ab2c60ae064a5819ad130d99e4e28d9e68d4","sha512":"f6cdb2ea57ece7e3fdb7894b7e47b91e36a15401dbb20ab6ff18b61809f94957ba82e77794ca85aaabdb77d6d9964ec726ec5cd0c3529ac8287df0738db848f7","ssdeep":"","tlshash":"312100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1356,"data":"","first_seen":"2026-02-03T20:59:14.669836Z","last_seen":"2026-03-07T01:24:38.317578Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"f2d2281be618aceba847ebf55e581e8e","sha1":"200264c23588765f13c4a6087de28e0082650564","sha256":"d55e01f0b00962f492bf30eca864ab2c60ae064a5819ad130d99e4e28d9e68d4","sha512":"f6cdb2ea57ece7e3fdb7894b7e47b91e36a15401dbb20ab6ff18b61809f94957ba82e77794ca85aaabdb77d6d9964ec726ec5cd0c3529ac8287df0738db848f7","ssdeep":"","tlshash":"312100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1356,"data":"","first_seen":"2026-02-03T20:59:14.669836Z","last_seen":"2026-03-07T01:24:38.317578Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"f2d2281be618aceba847ebf55e581e8e","sha1":"200264c23588765f13c4a6087de28e0082650564","sha256":"d55e01f0b00962f492bf30eca864ab2c60ae064a5819ad130d99e4e28d9e68d4","sha512":"f6cdb2ea57ece7e3fdb7894b7e47b91e36a15401dbb20ab6ff18b61809f94957ba82e77794ca85aaabdb77d6d9964ec726ec5cd0c3529ac8287df0738db848f7","ssdeep":"","tlshash":"312100f0c0000c00c0c0303c0cc0cc0030330c00c000c0300c00f0c0000c033c00cc0c","size":1356,"data":"","first_seen":"2026-02-03T20:59:14.669836Z","last_seen":"2026-03-07T01:24:38.317578Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"02c6e2f801acbb391683bab525291a0e","sha1":"7ee57494ea63b2d674867281e4a355b13d8ca298","sha256":"dbaffb537b340b174b17db65420cad4c0ffcfdf1f1781156467b023efd49d5cc","sha512":"6d2e72e7ff6a37b0fd321b66b4a8e98f0ef00459d9f57538d42b4c4e71981b5b7bc369446a049276552518eb3fba5bc60421d9e93a3d7576b8dcfda1835f59f7","ssdeep":"","tlshash":"4b5183c5c71e02bcc91603a5155e03ce027e6a353c225db92c6a4974dab89bec16cdf8","size":2473,"data":"","first_seen":"2025-05-14T10:31:31.79971Z","last_seen":"2026-03-07T01:24:38.319658Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"scriptElement","is_inline":true,"md5":"a2c9e11c0721978cb8bb09980a5a6a69","sha1":"38534566879748295376fd712c186e3ab1374dc6","sha256":"7a7be58b5ceda3c6b71bbfdf57dce87fafa5301f85f95ad4a90f8f80f8c4b6b8","sha512":"c70447f619b977183e00f2d22e729e5509e8a17e74481b8d2711c4c0b10736770d2b06171743dd523c96f897e23e3b5f321d137a51514e2c7b1c3dc31ebeb35e","ssdeep":"","tlshash":"c6d0c9c7eb4e2159886e729694ef25c8005c867288920cdabc3d51958da50ad5365f2c","size":221,"data":"","first_seen":"2025-05-14T10:31:31.801269Z","last_seen":"2026-03-07T01:24:38.323833Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"68151dd2c82b30e5820b7d733d7745b8","sha1":"bafc8b8da9624080ea4fdcf24dcd2da98a5d0a49","sha256":"20dd433e90c49d6de523df2d5adf093ef79be733577f04544e344a632bd30f9a","sha512":"db9e986d76a4e87bd6307386192f8ec499f4974195c856d775e57483544747a75584bd29267755800de48074d614ea363ee3a39d4ffe208760e4024ee3a4717a","ssdeep":"","tlshash":"d3210080c0000820808000b80c80003020200000c080c020088280c022080028828c08","size":1352,"data":"","first_seen":"2026-02-03T20:59:14.668162Z","last_seen":"2026-03-07T01:24:38.314723Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"4fe60570e5cfcb8724f55ff2c0911fc3","sha1":"81b8661720cf943a8b2421946e81ea77e228f139","sha256":"8a32caa02ea84676eaa49158df6e4122983a54964440d4d3565be8258f2dd9e2","sha512":"868071c567bff754cea19bf3070409765c959cef5d181b676074a0311079291b291833ebb686c2a21f60c6a2a2d590844c44485fe1038302f981ddf4db0250c1","ssdeep":"","tlshash":"c72100c0c0003c00c0c000fc0cc00000f0300000c0c0c0300c03c0c0c00c003c03cc0c","size":1362,"data":"","first_seen":"2026-02-03T20:59:14.677415Z","last_seen":"2026-03-07T01:24:38.320319Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"15e459c4a476ec4c974b66aff3e47dc1","sha1":"6b15a407ca1f46fa427b91962554dc0415f49301","sha256":"e936aceb3c5503a563bf15b3dfead2b70c498b4af20e93fcb1df1b11a5121c3f","sha512":"0d438ee83bdbc1f8a6b80ea250d34478c9d54969ec34fca992af11c5ad6cbeea35d48d32dc9780fe2379b3bdc21f5ffac7497a80df1e7124cc4bf52395cb6e8e","ssdeep":"","tlshash":"762100c0c0000c03f0cc003c0cc0c00030300000f0c0c0300c00f0c0000c0c3c03cc0c","size":1354,"data":"","first_seen":"2026-02-03T20:59:14.667187Z","last_seen":"2026-03-07T01:24:38.31353Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"introduction_type":"domTimer","is_inline":false,"md5":"2b5bee00dfbbb42121cae571fe36a9a1","sha1":"0e5f8173f4d99757c1e96594671b8132cbd34c52","sha256":"c92ad75911f4eb5654274e844fb764b9fec3d4df987e0195c1e3e8c05201c953","sha512":"72a1411b1b019244ec0eb5c2604c96204310392fd290379b16f7b87c400025ea22b8e8fb88c0dc21c5f64090581d1725f8db0157113237dfaa61c2f4507e8fe1","ssdeep":"","tlshash":"992100e0c08e0c22808080380cb0000220208000c8c08000080080800008002800080c","size":1368,"data":"","first_seen":"2026-02-03T20:59:14.671201Z","last_seen":"2026-02-07T09:42:29.416159Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eth","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:09.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:10 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"3683acd3bb6a3d4a54388cd9de0a6944","sha1":"ea9956056d1ddec872464a633d15751fa112a7cd","sha256":"9ed83f40b96a19176247c8a716bb6c18bd13e3c6eabbc629113febcb23b9c465","sha512":"f577ded582e8ab4dcf89e5b174743cd7b152182a0091a48b5139a796f4e5e4e55f95b2096f7f724b9da73dafdd9780b5847bb4c6a58325c0f45bd9d1e4fbcac8","ssdeep":"","tlshash":"76d023e49f3900151061e7d3f4f4171f585cc451d081d6049efdcb70166c50cb217c13","first_seen":"2026-02-07T09:42:29.372591Z","last_seen":"2026-02-07T09:42:29.372591Z","times_seen":1,"resource_available":false,"data":null}},"time_used":385,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":385,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eth","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:15.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:16 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"3683acd3bb6a3d4a54388cd9de0a6944","sha1":"ea9956056d1ddec872464a633d15751fa112a7cd","sha256":"9ed83f40b96a19176247c8a716bb6c18bd13e3c6eabbc629113febcb23b9c465","sha512":"f577ded582e8ab4dcf89e5b174743cd7b152182a0091a48b5139a796f4e5e4e55f95b2096f7f724b9da73dafdd9780b5847bb4c6a58325c0f45bd9d1e4fbcac8","ssdeep":"","tlshash":"76d023e49f3900151061e7d3f4f4171f585cc451d081d6049efdcb70166c50cb217c13","first_seen":"2026-02-07T09:42:29.372591Z","last_seen":"2026-02-07T09:42:29.372591Z","times_seen":1,"resource_available":false,"data":null}},"time_used":381,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":381,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/1613786513998262.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/1613786513998262.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-adc\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2780,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"856bfdb63dc0d6fad6b92fc6a29719e1","sha1":"2fed2e3409ce1bbbfb37f6da4abeecc30cefc021","sha256":"eebe29898b8b7de5c9e47daab474152be8095e3ab42d768b84b085c5a12b95c6","sha512":"a61c0a108d63c89ae62a2b03108480b5c08bda0e80049089a2a84cd7973bd9e94dcd2902e166b92e1d7ad5b7356357c9b181cb1b6051dd25913e82d2420154f0","ssdeep":"","tlshash":"51518cc7a707f33a9c866161bed44509f244d80a8160b31c0f33a7572c8a83ea4f324f","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-06-08T12:06:52.109399Z","times_seen":21383,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":601,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_itc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_itc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=itc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":777,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":777,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_doge","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:13.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:14 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7a62817e706d8288ae20693168dba2ce","sha1":"3776a98481ea07b98d3a2f3fd51a620c12194064","sha256":"52a121312085e39ad62fdbd8ccaf6a22f38ad4bd9805622e967676b37d203fed","sha512":"24064588aaff73670748120f31ddc98c506eb0b8df162dc2f8018e618a7e22651efbd4c120b0a95c2deb93ce562df0122e52b1d03f45a0c8206187e06298f679","ssdeep":"","tlshash":"c0d0a7c03f3805390d22e3d268d9131ee4aa40858080920d56fd977c246c3082223816","first_seen":"2026-02-07T09:42:29.374909Z","last_seen":"2026-02-07T09:42:29.374909Z","times_seen":1,"resource_available":false,"data":null}},"time_used":380,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":380,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eos","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:21.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/qrcode/FanamLa.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.719Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/qrcode/FanamLa.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391cc-7f87\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":32647,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced","md5":"663b0c447697d27ec8856409f214b021","sha1":"8ea144fca3fb898c5f1a0d5c192084f46bb6c9c8","sha256":"5459d52c41be57926ab568e4d5e75d2f77d0d88739e1903884925ea178bb2ccb","sha512":"a0b604b05527127d0db4a9e89bf2bf3b9dd38574e5f50b33206570e01646c77d30711ee80b2ba0614c946595c5e0661f55fef48464a410677c819ed7ff4c33c5","ssdeep":"768:vM3rxJS1gfgBIa2hthzfVc2PztvWHMr5cR2a:e10nIXth5xyMdi2a","tlshash":"32e2e0f55c59a86d2d8444b00b685e75abfa80c21d8ae1dfec8013dffa260ef4be0565","first_seen":"2023-06-09T02:38:16Z","last_seen":"2026-06-01T14:38:20.577959Z","times_seen":463,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_iota","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_iota HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=iota"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"a11de64e4723f8f2fdcf47c296fc5e13","sha1":"5a1668068c2041bd72bd67c735de61d478e458ba","sha256":"fe7c8a345af5cb1d16632f3370d4d13f3b37f1ff830460242b9c2102efbb9c59","sha512":"3726f03f0d3291b96d91a9a620cc9c4a7978494058a55e242199d514e0c3ca66f03b0053b6756d15f4e1de792e03a1d0cd8bee0314f6fb1653e205d01713c6cf","ssdeep":"","tlshash":"c9d022c1bf7d00260cb1e7d068e8131ea48e88878082560d2ffe9a7804ac1083232e1a","first_seen":"2026-02-07T09:42:29.376946Z","last_seen":"2026-02-07T09:42:29.376946Z","times_seen":1,"resource_available":false,"data":null}},"time_used":616,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":616,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_ltc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:17.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_ltc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=ltc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:18 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2c2ba0b57756eba43f3ff16334ba3522","sha1":"ea6acfd90d6c5fb6547d442b50679349a39a6a46","sha256":"b48d26db8baf7d326189b0ae4876656ff92d3e3c1360ea895b1e88961c5e3bf0","sha512":"744298ad6b844bcd81b99befad52b219679b9b1bd239b3cb5a6a7d6294f15c9ef9599afd125f44b7760ec8ace4340d2166f68396e4935ad49a212e28e8bfa7a6","ssdeep":"","tlshash":"9ad0c9c0ae7955260862a3e198f9266fa88a48868085824a5afeca6854695086221d2a","first_seen":"2026-02-07T09:42:29.377881Z","last_seen":"2026-02-07T09:42:29.377881Z","times_seen":1,"resource_available":false,"data":null}},"time_used":377,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":377,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/style.css","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.713Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/style.css HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: text/css\r\ncontent-length: 589\r\nlast-modified: Tue, 05 Jul 2022 01:20:12 GMT\r\netag: \"62c391cc-24d\"\r\nexpires: Sat, 07 Feb 2026 21:42:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":589,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (589), with no line terminators","md5":"df62cb99d119a66bcd5f06547d96ecb7","sha1":"a6d0e097db0919f47977c33510359bc08ec88a9c","sha256":"afca52e1c0203f27bf8165e8fcf92b2674f084f6372f12cc1e7bb3edaee35f03","sha512":"59d599c3a25a64cfae94e1b2f1328abffb199a503c0e8904a3e4a574c101cb6b72d09e94a7b2afaa3f8cbd1a55b92cb2b2bdc33b528ee6c953d30fa3b622cf0f","ssdeep":"","tlshash":"a2f07f42b71a596e5d872300a9d213abf10c7f319709097992f3211d8f29a85237df4e","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-06-04T15:30:27.621863Z","times_seen":6117,"resource_available":false,"data":null}},"time_used":552,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":552,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/jquery.SuperSlide.2.1.1.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/js/jquery.SuperSlide.2.1.1.js HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 13:08:49 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823061-2c9e\"\r\nexpires: Sat, 07 Feb 2026 21:42:05 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11422,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10855), with CRLF line terminators","md5":"0b9bc63ab05e21e3830da5bbb4ccee67","sha1":"d162156bdaf14217d76d920e0e57b86d8feb1d97","sha256":"349e46b2c65028736d0bbff7b829c7fc6fbdebc1fb1e8b12365a0ca2e6e9e848","sha512":"bdfa220da1f08e29f05a9984c4999d7e742bea10ad86b7e497a0d112c7992cc52b7f1e9f5430b4286f14bb2336110f85cbdc3164a92121caaf5c91961f7e69c9","ssdeep":"192:j+K3bxH+nqfhD9VUVjIItpfg5uXG3+1tSCl+7flvSXwaHxImISLTNSfYXH7Le2HE:jNcnqflKFgEWulE8REcS3j/CkR1Xh3","tlshash":"9532c65fb66635ca4597b3f1107f940d222b5965fc8a8ca0b17082c0adb9a1c243bfed","first_seen":"2023-04-05T11:06:31Z","last_seen":"2026-06-08T05:17:00.628553Z","times_seen":13820,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/advantage_phone_ui1.7a062617.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone_ui1.7a062617.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 24 Jul 2025 13:08:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823066-1fde\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8158,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 620 x 384, 8-bit colormap, non-interlaced","md5":"7a06261784d3908ab66f836816376de0","sha1":"3ea8a00b11b016e46703e0b873f005eb5e70adf3","sha256":"c6aa1f5b958419cbaa53682faf70d19d2737d2fc3ec58aeda3f83de3802ac4d0","sha512":"fd838b02e21d15d948d357fcea888bc7fe11bbe2d268d82f6b5f14341b2f253f5ffc6f8f34bac7beb7cead9c4780f6d4ee0b1e73db99ad3c681839965c886572","ssdeep":"192:RCD7357jDYAgAY0UKt/wetdU7BxeTKgPG2ZgwPhlTAAAAAI+GpYSTOFgWsh:RC3357ZXt67reegPG2ZvPDgGhCCWU","tlshash":"4df1ae00e21cefc3fdfce446b5a9916f24b44271323294ce50a39b65d8f459fa7966b0","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.654934Z","times_seen":5436,"resource_available":false,"data":null}},"time_used":654,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":654,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_usdz","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:07.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_usdz HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=usdz"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":175,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"bf0f004805bf908bfa983d83ce1eec53","sha1":"14573b904184dbf3ffd7291cc63e6e4fcca1020a","sha256":"470154e5201d3ca4842297d94259afd6444c099c196e7cb2d53ecf969f7a9e3f","sha512":"2b1ff72cdb08dca7305db83cf39996b49cac6dafbd9dd3183b54d18183ecb12b55b938252c797c77fe2294070c33f7da5742b16328e27b8451db6e89c7892e47","ssdeep":"","tlshash":"0dc080d45e3d4515017197c174f9376f746dc442c08182056bfecb7426fc1047115c26","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:38:20.551118Z","times_seen":60,"resource_available":false,"data":null}},"time_used":778,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":778,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_doge","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:20.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:21 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"b0ac5c3eaed688dc5cb7d958c0b0b5f2","sha1":"b8a43d4e3ddbf3c20bccc7bf1bee33b1c28d3f1e","sha256":"57f6d7258f89f33bb7c5759198abec6aed18a2e9aceee078feaecc32b8fd970e","sha512":"bc7a9ba20782bdea49c9b01a6c8c9a6668745ae48d98f14d22b729ccd5b18ab97d020fed80fad4d67c3eecdee81cd8468025bf9365ee1dc90e7a0f494548f1f0","ssdeep":"","tlshash":"c1d0a7c03f3815390861e3d298d9135ee0ae4486804452091bfd8768247d3082223816","first_seen":"2026-02-07T09:42:29.381185Z","last_seen":"2026-02-07T09:42:29.381185Z","times_seen":1,"resource_available":false,"data":null}},"time_used":379,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":379,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-07T09:42:03.339Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6; path=/\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\npragma: no-cache\r\ncache-control: private\r\nx-powered-by: ThinkPHP\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"ThinkPHP","description":"ThinkPHP is an open-source PHP framework with MVC structure developed and maintained by Shanghai Topthink Company.","website":"https://www.thinkphp.cn","common_platform_enumeration":"cpe:2.3:a:thinkphp:thinkphp:*:*:*:*:*:*:*:*","icon":"ThinkPHP.png","categories":["Web frameworks"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"jQuery:1.10.2","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap:4.5.0","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":82289,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1310)","md5":"e3db5274e484ad1591c716fb607f4250","sha1":"43a77ea01cd2e0ebeedf9c974cceac3c55bca9db","sha256":"00a2b30cc3cd58138f9cc507880d96b474b4d359d6d00a8be52498d76e79c291","sha512":"34f5edfb808852ccb1995a78779996e97c49128da18b1bf5027900e61178da28b322a32dfd40c365e2dbdd73a8dc5dbb946a1381dc1d1047d3401bc388dc3aff","ssdeep":"1536:PYN3vONEwhVH+UfyDnTyv7lK+bJfRGSil:C3vONRhbH7ldRRGD","tlshash":"d4832d90f79d19352053508b6bea42d9babe9133d617c4083ebdc6506fc6ca886737ec","first_seen":"2026-02-07T09:04:28.121473Z","last_seen":"2026-02-07T09:42:29.381976Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1805,"timings":{"blocked":623,"dns":66,"connect":276,"send":0,"wait":556,"receive":0,"ssl":282},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/hot-2.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/hot-2.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306a-1ade\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6878,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dd9279cfb541640afabd1d33527f1df4","sha1":"6d828472cfaa863044b92e5c884ea8d658df4d36","sha256":"6466ed8936ba729058d7e2ae3bc93a7d8f3fb8ec385d7e3c29f21968cbd5aaef","sha512":"53a3ddf98f9ea97b18e73e5ca308a452a16142e672dcf3d1c86e61cc83e94729651eb41301bc902cc2510178e0c708fb5b66f3bf1e4ccde0fcf5f61aff77fcf5","ssdeep":"96:QRslJ3A7/H2wd9Qci3A7/H2wd9Qccra97a9tx+duKNBBbNwKDNlUs7vkSqD:QWS/Zd9z/Zd9ia97a9tKblLs","tlshash":"96e197f7e1b8b993d246c771ed52485528aa84fbeb810391c2e8ff9a6135cc04c4edd4","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.631321Z","times_seen":5062,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":603,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/5f8738fd439bc57.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/5f8738fd439bc57.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-9a9\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2473,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"430e14fa7ab62df82c9858bfa2682ece","sha1":"aa845a9abbffcbceee99934123b8e4e94b9ee52d","sha256":"20aa97f93b13e2de6de053d1d96a51ef8746a758973515f93b3f6e905c98f716","sha512":"bebb827e0a4525c0f7d3213a28fbde13be283e82d41ff86cfb216c98cdd5fa6515cd3403e2b0b2237635f46b0703c22359e797ca5bb0d3f660c4a1a287d600f5","ssdeep":"","tlshash":"f5511bd8fcdd3065d094b87b6b2121a25a831bc4f2807ae6f426c4495233c69076cfed","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-06-01T14:38:20.579311Z","times_seen":4990,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/scripts.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/scripts.js HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 298\r\nlast-modified: Tue, 05 Jul 2022 01:20:12 GMT\r\netag: \"62c391cc-12a\"\r\nexpires: Sat, 07 Feb 2026 21:42:05 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":298,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"48477ea73f8709a6c29d7cde0cc83e55","sha1":"5dc30fab107725dd71ab343d70b9e6267ea68cf1","sha256":"fd67e1f083236a6c171d2275401174ea62a6f24fc81193d55653080a236a209a","sha512":"0932287b99d7c96929e7464b6684fe399dfcaaea787dcab28fa0879094b5eb4d92139260fecde4ffe430eca3986430f98a72fc523332c4e476bee9ea2226b1b3","ssdeep":"","tlshash":"1ee0cd91761d4f9d1ccc3257996092c576841524e401f06790374c6c0a9584225fb7fc","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-06-04T15:30:27.648543Z","times_seen":6129,"resource_available":true,"data":null}},"time_used":832,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":241,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/advantage_bg.a5d6d444.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/advantage_bg.a5d6d444.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 24 Jul 2025 13:08:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823066-77e9\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":30697,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1392 x 1048, 8-bit colormap, non-interlaced","md5":"a5d6d444c8524a6d8e39fa1618582284","sha1":"4fda97683b94717d7597718b1e01c4a091f78ff2","sha256":"b2503b762cb8bf80f11571c1a10ac888258b78cc2a3a847780dfecef23dbb39b","sha512":"cfaf1fb56063ecbfc8d8a07ca56e6be8663b32188308ea349debd55b57e847c8005dbcbb1d72dfb8a7ca7873da81e44ed4b993345d673cf78bb3d3045f5cca11","ssdeep":"768:J1+dBPa7fkey90Yf5vWOjCuMg4+26RwDN1OvagerN6gA30Mh:3+dVa7fke7YlV14+d/vageR6gI","tlshash":"dad2e1dcf0f1d689567b11af43f47e48f5a5377e223344a05bade009a28095b3a7b41e","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.664518Z","times_seen":5427,"resource_available":false,"data":null}},"time_used":659,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":659,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/advantage_phone.511b5ee0.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone.511b5ee0.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 24 Jul 2025 13:08:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823066-4ddc\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19932,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 1038, 8-bit colormap, non-interlaced","md5":"511b5ee00b739dea06dc9e55011afa57","sha1":"eb4ebfdfc46829471c2b86dc94b2e6bc83037fb3","sha256":"31b768d13aee263d4de7af1b5527bded34ad208284df0544dfe5fca9d00a41e0","sha512":"54e06fd802883d46f47e6f59f3d795d893ea797d8295c1cbb506b91a46d0d1efa79751a454049c3e6b2ac06dd5a312950658d96fa9f8c3cefd1d46f73e5ebda4","ssdeep":"384:/M6qoHUBFHYEFyqYA3ar7vWF6cCf9X+VFMsTB:vXHULHpFyRxc0X+Q0B","tlshash":"fc92d0c78eb6894efba7c47c81508bf2617a282190e61dd5fa61e3a3b432645db36071","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.649301Z","times_seen":5451,"resource_available":false,"data":null}},"time_used":656,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":656,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_flow","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_flow HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=flow"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":870,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":870,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_jst","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_jst HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=jst"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"90ffd383733ce57620f7942995c89a87","sha1":"9f4c46ba2b894951f434188e8ed7dbc8992375fe","sha256":"eec9644582a3ce0c979e61eeb7e57513c9a6b27f89b1f244cfd62649a0b62102","sha512":"332358160cc5ef55fdcc0fc5000bd56a78708d02b4dd84f34dafe75ce8838e3b77873510811868230954678c2fe0dc4a6e0e350211cebd05ee89ff854050efd5","ssdeep":"","tlshash":"bad022f47e3d011102a27bc064fb077e6488c086c080520edbfec7b029a9025b00ad13","first_seen":"2026-02-07T09:42:29.386027Z","last_seen":"2026-02-07T09:42:29.386027Z","times_seen":1,"resource_available":false,"data":null}},"time_used":951,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":951,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/bootstrap.min.css","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.min.css HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 05 Jul 2022 01:20:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391cc-2f0fa\"\r\nexpires: Sat, 07 Feb 2026 21:42:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":192762,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65184)","md5":"cb46b85888b78de64c1f51bc7797aacb","sha1":"e57147e69810b9ee63af657969ddfd6c456957e3","sha256":"652650f2c09a63e822932e07d79583c64a996e44ff680e2a9183c2a7c5b2531e","sha512":"cdf48d3e0b60cd162995316ce921e3285248d481378251f13403c39302baba3efe6332a537cccf255e2261b8c39d719ab1a9efd83e97111ed321e11dd0eefdb1","ssdeep":"1536:rQGFA+QbGwz48MIEtQ12c2Jsj+aeHYAVmJz600I40Yw:rQGqAVmJz600I40Yw","tlshash":"311492a7f581201ee493c10995d2bffe057f9586d3021baaf42737b44b452eb8a63e4c","first_seen":"2023-04-25T18:57:28Z","last_seen":"2026-06-04T15:30:27.620392Z","times_seen":3266,"resource_available":false,"data":null}},"time_used":297,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":297,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/icon_etf.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_etf.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306a-55f\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1375,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6e432564e65f8779c665055d5bf9f563","sha1":"dc529670e33c8baace696f7ed4c3ef3bbe9cad90","sha256":"2df7417ef0acff023bffea1bf0c6366884770c1dab4d191f24ec29c84d2b7031","sha512":"cec79f984f55609c45347e0a6b9e885fec23baadfb00fca179eeed2b2902e5a8659649b6e4d7c0711a40bff90b8acfb7b8823a89beb53f9e836211ef89f17c3e","ssdeep":"","tlshash":"cf21e9fd204aaa29b35dc352ab2961f4184610fe1f35e4c1dbf855143c1cbfe495a1db","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.634706Z","times_seen":2567,"resource_available":false,"data":null}},"time_used":598,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":598,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Nunito:wght@400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css2?family=Nunito:wght@400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 07 Feb 2026 09:42:05 GMT\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5463,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"721a040ea564a6f1097d3c9fc78e4478","sha1":"969b3a763c65bbea8dd653387efe6482fd53f614","sha256":"1eab5e802b5f0457aaad88e630b825da8ed3ba340a35a34b5f6901d9d84bdad1","sha512":"44cce6feb92211ced4be081e6a2c9c0c63b0fc22a7243396544d0d88b4736d6e6d62ee3cad5136dda1b21e3f4eac55d6b465a0b28922df3565bc5bef366db625","ssdeep":"96:BOEabTxOEa7FZOOOEaKOEaQJc+uaOEaENqOxMabTxOxMa7FZOOOxMaKOxMaQJc+m:OH+yptkUkH0yXLkeLHbywkkdH","tlshash":"5eb17891045bd400aa432cc667cf7f37ed4e62113464c57aebfd9898ecabd272264b1e","first_seen":"2025-09-17T11:57:27.939025Z","last_seen":"2026-06-07T20:45:52.568103Z","times_seen":1441,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":115,"dns":1,"connect":20,"send":0,"wait":35,"receive":0,"ssl":92},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_ltc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.977Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_ltc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=ltc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2c2ba0b57756eba43f3ff16334ba3522","sha1":"ea6acfd90d6c5fb6547d442b50679349a39a6a46","sha256":"b48d26db8baf7d326189b0ae4876656ff92d3e3c1360ea895b1e88961c5e3bf0","sha512":"744298ad6b844bcd81b99befad52b219679b9b1bd239b3cb5a6a7d6294f15c9ef9599afd125f44b7760ec8ace4340d2166f68396e4935ad49a212e28e8bfa7a6","ssdeep":"","tlshash":"9ad0c9c0ae7955260862a3e198f9266fa88a48868085824a5afeca6854695086221d2a","first_seen":"2026-02-07T09:42:29.377881Z","last_seen":"2026-02-07T09:42:29.377881Z","times_seen":1,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_fil","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.994Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_fil HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=fil"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9bd69dd6c6b231deb7c9fffad481f9ae","sha1":"d78d1743501ae0caa62d4afe984763d625c9fb32","sha256":"6aac329b7bbd46896e56fe8c4f9c27817c992ef6f9b5a9f4412697de2c61efec","sha512":"59e5f551b822a1a691c64572b5a2de36a177e543f6f2e117520719bedd8b15e150faad41bfa62873a0b04134631eddd09e111c8d9a8ea374f174a34433518e06","ssdeep":"","tlshash":"20d023d06f75011505716fe114fd172d906cc045c8425309d6eec731359801c7004d12","first_seen":"2026-02-07T09:42:29.388327Z","last_seen":"2026-02-07T09:42:29.388327Z","times_seen":1,"resource_available":false,"data":null}},"time_used":694,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":694,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:18.969Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:19 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1eeceefa68daecf655d63e8748995271","sha1":"c4fb6c879452cb937c616c0fbfe717397e02fdb9","sha256":"ecee306969efa3c29d4c709c471caa15e811ed5f878e35c4c908ac1d835226a2","sha512":"d6014719df6600e1198322cdcbc672497414c3fadaf74141c976fb40568acb9f16cffff6c4f5045859005d52170a9b0c6e738b27ac8f59fac111f95b25505328","ssdeep":"","tlshash":"97d023a05f3800350c7293e1d4ec171e588e448180d4424a59fdcde5749c50c3712c35","first_seen":"2026-02-07T09:42:29.389376Z","last_seen":"2026-02-07T09:42:29.389376Z","times_seen":1,"resource_available":false,"data":null}},"time_used":463,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":463,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_iota","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:19.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_iota HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=iota"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:20 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":199,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"a11de64e4723f8f2fdcf47c296fc5e13","sha1":"5a1668068c2041bd72bd67c735de61d478e458ba","sha256":"fe7c8a345af5cb1d16632f3370d4d13f3b37f1ff830460242b9c2102efbb9c59","sha512":"3726f03f0d3291b96d91a9a620cc9c4a7978494058a55e242199d514e0c3ca66f03b0053b6756d15f4e1de792e03a1d0cd8bee0314f6fb1653e205d01713c6cf","ssdeep":"","tlshash":"c9d022c1bf7d00260cb1e7d068e8131ea48e88878082560d2ffe9a7804ac1083232e1a","first_seen":"2026-02-07T09:42:29.376946Z","last_seen":"2026-02-07T09:42:29.376946Z","times_seen":1,"resource_available":false,"data":null}},"time_used":376,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":376,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/img/asdasdsa.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/img/asdasdsa.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Sat, 18 Feb 2023 01:46:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"63f02de4-edfa0\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":974752,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2143 x 726, 8-bit/color RGBA, non-interlaced","md5":"636a4d873a983baad1c803e78c0e0bb2","sha1":"073938905179832f59e118a24749de29b745bac7","sha256":"bfbb50e1652f3ed1335d799c043f1a198eeb40b425ab350415e94a1a7e3e9f1e","sha512":"f1e43adbd48b9e2c00c0c78bc2cef8a059581d287edb12c7811398276dab48786c14403b7d66195d483148db8d306a81c5d6a25f45453870b6bc5d0877965d13","ssdeep":"24576:kbjWKia6EhSLhQLSRFw8e4J8afvbiFlWiw6e0r+h3svPaQREayz:uiaCaLNx4J8+Gvw6v+S90","tlshash":"a72533758285d7f67c1a6b231d3cba13a10117bf7009ead9d4ca90f06b0f5c1abf2a65","first_seen":"2024-08-19T16:57:31.177682Z","last_seen":"2026-03-07T01:24:38.299566Z","times_seen":21,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/icon_contract.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_contract.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306a-487\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1159,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8be2edf2728aa394553b4fd9a44471f0","sha1":"1afec38a2c761fbd902e1de55d280424335aeeca","sha256":"306f962a6980e05ac92e3e8d3b1818e864f5557237541ab81cf2a15c44a190aa","sha512":"cd25567c0782132f9dcf858b252b11d1343a57a747b1bdbb7094b31baa1074528bc86fafeb66ac71997b4f4ae50e20c56373774f0f79fbf4b2ed339be8000ed4","ssdeep":"","tlshash":"b421ce69623543b9f04a82b212c9f47f353e06d8f1cb44c9e5671e20206e82ebca96c3","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.653587Z","times_seen":2571,"resource_available":false,"data":null}},"time_used":599,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:12.971Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7577b60e44610c04fb295e84c172f68e","sha1":"3d711126b2b1d026c0d51f94721fee3a336fcaf4","sha256":"d17b0cdf328a15fa7e3211bb26c23c7a54678612cddcb06c4c59bf3ec1627a28","sha512":"486ab639d7be8c5bb2dab5339df300cc3b79e1c647bcc0f28ca0ba6947277ef19f8725d575cfa898b344744d857377fa2fc138d465a014cfa658f8974a278675","ssdeep":"","tlshash":"4cd023905f7801390c7197e1d4ec171e148e00c390c0c54a59fd8df4345c10c3623c36","first_seen":"2026-02-07T09:42:29.391535Z","last_seen":"2026-02-07T09:42:29.391535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":462,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/5f87397132a8b02.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/5f87397132a8b02.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-998\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2456,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"bdaeb947a2eb31bae0a170559df9013c","sha1":"7fc8496c9bf51eea98dc9060262f87a792a24a43","sha256":"3225172adc122cc7f8f09fbcc94757061330651a485f17091f41726767f7ea3f","sha512":"710a1ac11f6fdb3915479bf6b9eccf34f4dedd8f30e6bed5275f52d1ec634a754b252e385eb9cd388a5a69c64aaf5818c13cb783090ae68a8696af067cb67341","ssdeep":"","tlshash":"9e512b90d3f3d98a7d930935f8b27a34cfda87da97098523ea834854e279442cd24943","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-08T09:03:19.646528Z","times_seen":18335,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/advantage_phone_ui2.03eb46c4.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/advantage_phone_ui2.03eb46c4.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 24 Jul 2025 13:08:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823066-1fc3\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8131,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 620 x 414, 8-bit colormap, non-interlaced","md5":"03eb46c414ca4054d6aa8bcc6146e203","sha1":"1ad3fe2ee83e35506f404b3dc6110540539e32c6","sha256":"98f20bbbd1c55089292d663c5a641e6cb4d02e91149bd3b1dbfa3dc87168d1fd","sha512":"e59d6713424efe87e45984399aab1739b3b1ff7cde9fff91c83582110c669f9bf299ccb30a7286bec64c48243f887f701f27051f9e6e8b4445c9e927505db019","ssdeep":"192:vri1p22NLEFORfDwDmxiEVHkmrogfcftKLatznubkt:vriOMR8DmxiEVkafc4czuu","tlshash":"2ef1afc2d9d35ddf9d9c0b2b34cbf454844249d0eac68d05d74245a8f8be082abe3d9d","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.637723Z","times_seen":5494,"resource_available":false,"data":null}},"time_used":653,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":653,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eth","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:12.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:13 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"3683acd3bb6a3d4a54388cd9de0a6944","sha1":"ea9956056d1ddec872464a633d15751fa112a7cd","sha256":"9ed83f40b96a19176247c8a716bb6c18bd13e3c6eabbc629113febcb23b9c465","sha512":"f577ded582e8ab4dcf89e5b174743cd7b152182a0091a48b5139a796f4e5e4e55f95b2096f7f724b9da73dafdd9780b5847bb4c6a58325c0f45bd9d1e4fbcac8","ssdeep":"","tlshash":"76d023e49f3900151061e7d3f4f4171f585cc451d081d6049efdcb70166c50cb217c13","first_seen":"2026-02-07T09:42:29.372591Z","last_seen":"2026-02-07T09:42:29.372591Z","times_seen":1,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":387,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:16.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:17 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1eeceefa68daecf655d63e8748995271","sha1":"c4fb6c879452cb937c616c0fbfe717397e02fdb9","sha256":"ecee306969efa3c29d4c709c471caa15e811ed5f878e35c4c908ac1d835226a2","sha512":"d6014719df6600e1198322cdcbc672497414c3fadaf74141c976fb40568acb9f16cffff6c4f5045859005d52170a9b0c6e738b27ac8f59fac111f95b25505328","ssdeep":"","tlshash":"97d023a05f3800350c7293e1d4ec171e588e448180d4424a59fdcde5749c50c3712c35","first_seen":"2026-02-07T09:42:29.389376Z","last_seen":"2026-02-07T09:42:29.389376Z","times_seen":1,"resource_available":false,"data":null}},"time_used":540,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":540,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.708Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 1.3.0\r\nx-jsd-version-type: version\r\netag: W/\"edbb-Du3MPQ7GnRobCfGvnAP4Uqb5QVI\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\nage: 2202975\r\nx-served-by: cache-fra-etou8220023-FRA, cache-hel1410027-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 8017\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60859,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"dbf1248779dc682a91ba529b5efe0ffc","sha1":"0eedcc3d0ec69d1a1b09f1af9c03f852a6f94152","sha256":"32cc4a47b370e278072a6440249872e681efa1d992600420c03a9631da885d70","sha512":"2e96320bb785273c91c136a4aba02268e2c9ebcc92998c24160331ec14f0f902132d21f4ac4cb130771dd20758bef407d589b1f8e3175796622edb162a517098","ssdeep":"384:vaqJVm8OAL1M+hQokEYm47U7yH2CYEjOnm4zH7fZ6aXoso1v/:Sqnm8OAL1Mzocm4KyH2CYEjOnm874soh","tlshash":"2c53cebad18f05f59341e4d92743674293a9ba7ce1817c7ad342399ee3c06188ad73ec","first_seen":"2023-04-05T06:29:21Z","last_seen":"2026-06-07T14:20:27.280475Z","times_seen":15008,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":70,"dns":1,"connect":13,"send":0,"wait":14,"receive":1,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/css/base.css","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/css/base.css HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 13:08:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306b-63e8\"\r\nexpires: Sat, 07 Feb 2026 21:42:04 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25576,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (846)","md5":"5f3a553d373530a0c4441f24c744db3c","sha1":"fbc90398eb746b2e684fa1a01a344682b2511bb8","sha256":"62265550b10b676ab42db146d18392f56801b29f3f93ac8fbb17e05002a49885","sha512":"050fa21a62adf0bf09e55d14bd66d4d997c9e503666f06035cef2b30eef9bde81a297e5cf488268359198db019ea77e8359ae18a42b3cfc2bda4d9b5b2fbfa8f","ssdeep":"384:BbFiOVTjRmNi2RoLy6IbRiWc2FDwFxYtrvRnEkEZ58s8BXR8G8LrB888t7jL5ZBs:y4cN39FDwFxOEZS9YzqtRB8TF3MDq","tlshash":"dfb295a7dfa30901b81bc5a41ff9ab55236c8017910bdebd7fc53648cf462d898a27c6","first_seen":"2025-05-14T10:31:31.778771Z","last_seen":"2026-03-07T01:24:38.303553Z","times_seen":16,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Static/bootstrap5Slide/bootstrap.bundle.min.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.736Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Static/bootstrap5Slide/bootstrap.bundle.min.js HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 05 Jul 2022 01:20:12 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391cc-1339c\"\r\nexpires: Sat, 07 Feb 2026 21:42:05 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":78748,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"8831aa095cdec88f66c2e46c339cf352","sha1":"5db4c40dbc6bd3d9623ee98a2061dd265885cf2e","sha256":"79d443b15f542c8a8acca8e937f2a3c90ecba78bd49fdbac6c9b878c7f1293e9","sha512":"b07f093e128951e03d3d693778e70e97c53e95f65382d0570f8d6ae9c3bfb25c311870b129c5b8e4ae283c25211c6ecd301e266ca11d75598fb935eda5b09b14","ssdeep":"1536:GaPTJR2t4PqiiyuL5FehgTr1voCBZx6wVlLBkS:4OANBZVV5","tlshash":"0f73c5493254b87309ee15a68037460bf7256d94b14b802cb5bdacde2b3dc8672b7f78","first_seen":"2023-03-07T01:34:42Z","last_seen":"2026-06-08T09:16:31.274467Z","times_seen":7768,"resource_available":true,"data":null}},"time_used":591,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":591,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/ios_down.e011cb37.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/ios_down.e011cb37.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306b-2edd\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11997,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e011cb37e1cdc749fa40e455f952c628","sha1":"c102a94a6beb0a26de83c2e21ab6ab409f265e88","sha256":"5b8c67057adbf739c8bbe363ef30d3e57638991690cd9930aa237e5b408849ac","sha512":"a92a160de1026815ca8078f6cc059fb8fba29284a5c792295a9755e8f6e3c10ae138c90b0cac9774f35cdf430106e4a7ccb5c88729e9750e867cf826479001fa","ssdeep":"192:sb39cIK/24cUfDfcFDOlozy6RWSmwQn0F3TRe3nclNXAJdlIPprWl:2mIK+OrcFKozy6RrIni+nKNXAXlI0l","tlshash":"9b3255f79354c0c4791e99e5cc3f1ae93a0ef0fb9a81a08832ade841e753ddd865ad44","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.661494Z","times_seen":4099,"resource_available":false,"data":null}},"time_used":660,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":660,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/layer/skin/layer.css","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.367Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/js/layer/skin/layer.css HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:06 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 24 Jul 2025 13:08:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823062-36e0\"\r\nexpires: Sat, 07 Feb 2026 21:42:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":14048,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (13967), with CRLF line terminators","md5":"1673a003559ea1607dd77e6467a4baed","sha1":"954f4afa17e3d1c057101e62950f6c9506245550","sha256":"9748f440829e0b76d70f344e9c989f6d2302eba81aeea03211d40ef5f29fe62a","sha512":"5f9b8254fe18cdc329ca87a4852b7cb5520dcf3c406c5b3d755e99d0e7ddd618cd5ca2b455868ae14d896431cea2252b60d79d5fdd9e404a1fb8685a05ceb955","ssdeep":"192:9OcW0PmLeWVNrzztBm0T9zBKgwBnsY5Cb+RX:9PW0ijV1JbTyGY5CGX","tlshash":"1c5202e144811299b0278611d6dcbeba32f88d53e5630dbef2573c1f874c6dba2b6247","first_seen":"2025-04-07T11:37:37.344268Z","last_seen":"2026-06-04T15:30:27.63912Z","times_seen":3225,"resource_available":false,"data":null}},"time_used":516,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":516,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:10.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:11 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7577b60e44610c04fb295e84c172f68e","sha1":"3d711126b2b1d026c0d51f94721fee3a336fcaf4","sha256":"d17b0cdf328a15fa7e3211bb26c23c7a54678612cddcb06c4c59bf3ec1627a28","sha512":"486ab639d7be8c5bb2dab5339df300cc3b79e1c647bcc0f28ca0ba6947277ef19f8725d575cfa898b344744d857377fa2fc138d465a014cfa658f8974a278675","ssdeep":"","tlshash":"4cd023905f7801390c7197e1d4ec171e148e00c390c0c54a59fd8df4345c10c3623c36","first_seen":"2026-02-07T09:42:29.391535Z","last_seen":"2026-02-07T09:42:29.391535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":383,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/icon_margin.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/icon_margin.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6882306a-654\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1620,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"283d6ddfb29042011328571a509df448","sha1":"3e486c50cfe119efc43c68ffafa349670c9f919c","sha256":"e88581cf4375fb6f9e7d94b4f9df4a667677d0d96384227c9a9228b1329f3308","sha512":"78e85634891dbc1423281f54e43c362b9cf8c75c83a070c34b36676b72b7b71e7793b2224c6d820eb870a0f7d854b336334b8ba0bca9125854139aaf2a97bc91","ssdeep":"","tlshash":"4e3120883a7ac39ce500e7ad981bb5ac3e1e04e96684c5d9c3e22c1078d2a59dc98dd7","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.663806Z","times_seen":2551,"resource_available":false,"data":null}},"time_used":599,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_ht","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:07.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_ht HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 7\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":7,"data":"coin=ht"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":1034,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1034,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eos","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:11.961Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:12 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eth","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:18.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:19 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"3683acd3bb6a3d4a54388cd9de0a6944","sha1":"ea9956056d1ddec872464a633d15751fa112a7cd","sha256":"9ed83f40b96a19176247c8a716bb6c18bd13e3c6eabbc629113febcb23b9c465","sha512":"f577ded582e8ab4dcf89e5b174743cd7b152182a0091a48b5139a796f4e5e4e55f95b2096f7f724b9da73dafdd9780b5847bb4c6a58325c0f45bd9d1e4fbcac8","ssdeep":"","tlshash":"76d023e49f3900151061e7d3f4f4171f585cc451d081d6049efdcb70166c50cb217c13","first_seen":"2026-02-07T09:42:29.372591Z","last_seen":"2026-02-07T09:42:29.372591Z","times_seen":1,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":386,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/1613786496962262.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/1613786496962262.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-a83\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2691,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"2edf1ef8b333c40979976d1a49bc234c","sha1":"d75ac12795b4a9575c874e1b190712cd62a87afc","sha256":"50a1901684f223bf26594dd3415b1e50f184820a16daa810cc5452911e9117a9","sha512":"f697a1fa0786316fc01003f72621920932e2657e4acf5a471e35d02717c42c9db5a12df311895a776a563dcae9b8fc0b6721833529a054b9dbfff4c52fc564d3","ssdeep":"","tlshash":"2b515ee60252267980d32438616db1e178beabb2c3021ded6c1444954acc4b62555cfa","first_seen":"2023-05-01T18:49:36Z","last_seen":"2026-06-08T13:06:36.241303Z","times_seen":21673,"resource_available":false,"data":null}},"time_used":601,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":601,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eos","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:16.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eos HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eos"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:17 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":25,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"68ac40a84898f40747d958e0c0941c75","sha1":"a033ad6d2dddc4dcbabdf38740c1a8cd192dcf0d","sha256":"232ef71afd2e2d3a4a886bd164ac9ae400955e7f71505d3570e31635b2ecc00e","sha512":"0707d815ab13b1d6804fdee766d93c98b78e2ceddafbecda34f34372d1d689ada7e8777adf7264eb03a393dafa59e80ce9810cb74592580f0be1ac8ef4f453c2","ssdeep":"","tlshash":"ec70000002afa8a3028200288c0f000000ac28882ca080008c2822288a200028a00020","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-01T14:39:11.901324Z","times_seen":318,"resource_available":false,"data":null}},"time_used":415,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":415,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Upload/public/69843a39e52b7.jpg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Upload/public/69843a39e52b7.jpg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 05 Feb 2026 06:35:37 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69843a39-17a34\"\r\nexpires: Mon, 09 Mar 2026 09:42:04 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":96820,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1150x768, components 3","md5":"fd4b8f400f72da6e345ea1a24c301399","sha1":"52022d5f384ba9b042acea7426e250f283216115","sha256":"54762c0162c31b01785c769d2de69e7ed95f0cb89ed0cdf20c05a20f59d51abc","sha512":"e7521588a3209590007ce7852496c64ef1291ef5fe6cda35ff8737770c05cc602d758a3582eaab3057a86f3c063aebf4cde73397f96ade0e570fed8f086185a3","ssdeep":"1536:Ea9oJ6gY5BZscBJeNh0d7zMZRhMvo8X2BF+DHSR0xSetfc/D:ECI23NLeNhuUR/L++R0g0U","tlshash":"349302624fd9e08fc7a5a332ca155a3b517c827550fa9bde3196ef05b730c629c70e18","first_seen":"2026-02-07T09:04:28.129762Z","last_seen":"2026-02-07T09:42:29.397552Z","times_seen":2,"resource_available":false,"data":null}},"time_used":568,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":568,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/doge.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/doge.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-838\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2104,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 61 x 60, 8-bit/color RGBA, non-interlaced","md5":"ff0c62c872d877837881793431cf064c","sha1":"8ee9cdfe43cfba24078529fa23984ab9e9d99a76","sha256":"c146f8822178b5581dd5eb80071e9824e1634252a4cd0d25b9675b0cb3da570e","sha512":"2416ae2389993012befe574c4ee91c47b6101f3e89b7582d25ce214e248e5305f327183c2a7222259b9aeae09ff7315edeae1ff11c8be3304ca11d5cefeb09ff","ssdeep":"","tlshash":"b0416e07f3ddbe79ccd66bb71348e024d01ff7e1b8010b98a42a4c565258c6f215c44b","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:27:14.911715Z","times_seen":5359,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/2.1.1/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"118.107.44.62","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"staticfile.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 22 Jan 2026 00:01:43 GMT","end":"Wed, 22 Apr 2026 00:01:42 GMT"},"fingerprint":{"sha1":"2B:FE:D1:4C:B2:15:D4:56:36:0B:DA:6C:73:D5:42:F2:7D:D3:93:46","sha256":"E2:AE:C8:67:4A:05:4C:D9:91:44:79:C1:04:F6:51:97:CF:0E:9D:BB:FB:36:C1:D2:03:9A:AA:71:B4:20:6D:C5"}}},"request":{"raw":"GET /jquery/2.1.1/jquery.min.js HTTP/1.1\r\nHost: cdn.staticfile.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With,token\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-origin: *\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript; charset=utf-8\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\nexpires: 0\r\npragma: no-cache\r\nserver: nginx\r\nx-cache: BYPASS\r\nx-cdntype: readnode\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":84280,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32061)","md5":"d021c983bd6e7291b43a5cc1fb2ebe99","sha1":"ffe47a16e4b1550ddfba3577cc9cc9fdc8643aff","sha256":"c0d4098bc8b34c6f87a3d7723988ae81214a53a0bb4a1d4d36a67640f98ed079","sha512":"0b01d408ae79a4e3630f1bcf6507aec0aa71a2cf263f212ff601ae582f15af4df9ec9dae5e0d4fc9c1833cd0fd1207689121531ba920480a680e3f4e336da4b3","ssdeep":"1536:kPEkjP+iADIOr/NEe876nmBu3HvF38Nd+uJO1z6/A4TqAub0i4ULvguEhjzXpa9G:7NMnJiz6oAQKP5a98HrB","tlshash":"5983d6d9b6c27062977734b850bf410bb17a98dab80c8c60f0a4d5e47eb4a8d517bf2d","first_seen":"2023-03-07T12:01:55Z","last_seen":"2026-06-08T10:44:53.486393Z","times_seen":10049,"resource_available":true,"data":null}},"time_used":2372,"timings":{"blocked":741,"dns":84,"connect":337,"send":0,"wait":858,"receive":0,"ssl":348},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/favicon.ico","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 4158\r\nlast-modified: Tue, 05 Jul 2022 01:20:10 GMT\r\netag: \"62c391ca-103e\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4158,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 31x32, 32 bits/pixel","md5":"cef1fdcf0f902d25694d5ea83a3d8e97","sha1":"beed6c02f9875f1471122900f5d063d6fe67f0c6","sha256":"aaefc2dae382655fd38fef068fd3d8983038829141a7aee69b2748c21f11e8cf","sha512":"ad93af34db118050fa24f20b46cbe47e67ae07a671e92fed02710c78d0322591d662a83558ed27029574ace77f9e62b3e8cc5bd3b16d53aae700cb6edb661a17","ssdeep":"48:OmFtBetFrtn0t4+tPtHtRbtStj/tKJZri8jQ2nZb7PPPPPg0qlw:OPHCNvr5Q29E0qlw","tlshash":"c381d04bcc961255ea97103ef41383e1ac385ba64b9e710c2f687a1a381e77ed60470f","first_seen":"2023-05-22T11:04:23Z","last_seen":"2026-06-01T14:38:20.575286Z","times_seen":2090,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":278,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:20.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:21 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2b27910d343da98b907fc25c75b79797","sha1":"ef51bfbb028d4c7dcb744dd8f7def8b7404d9582","sha256":"be45aee3400bf098b2cd245c7584b8db5ffce365da773ad97c7b5fcddc7599de","sha512":"dd12e580635de11cacd0611056a743cc06b5d5303723d245808cbedc364f001622f5b05963280f33db5252f2a4cd90796b2ff7fa529003a299b05b9b40b348fc","ssdeep":"","tlshash":"47d023915f3900350cb293e1d4ec5b5e14ce00c180c4454b5afdcde5345c50c3222c35","first_seen":"2026-02-07T09:42:29.400087Z","last_seen":"2026-02-07T09:42:29.400087Z","times_seen":1,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_fil","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:21.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_fil HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=fil"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"9bd69dd6c6b231deb7c9fffad481f9ae","sha1":"d78d1743501ae0caa62d4afe984763d625c9fb32","sha256":"6aac329b7bbd46896e56fe8c4f9c27817c992ef6f9b5a9f4412697de2c61efec","sha512":"59e5f551b822a1a691c64572b5a2de36a177e543f6f2e117520719bedd8b15e150faad41bfa62873a0b04134631eddd09e111c8d9a8ea374f174a34433518e06","ssdeep":"","tlshash":"20d023d06f75011505716fe114fd172d906cc045c8425309d6eec731359801c7004d12","first_seen":"2026-02-07T09:42:29.388327Z","last_seen":"2026-02-07T09:42:29.388327Z","times_seen":1,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap@4.5.0/dist/css/bootstrap.min.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap@4.5.0/dist/css/bootstrap.min.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 4.5.0\r\nx-jsd-version-type: version\r\netag: W/\"27293-TxSgmmBsmaEfj9oVVk72b3BAKCY\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Sat, 07 Feb 2026 09:42:04 GMT\r\nage: 1838462\r\nx-served-by: cache-fra-etou8220176-FRA, cache-hel1410031-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 24869\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":160403,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65324)","md5":"3afe15e976734d9daac26310110c4594","sha1":"4f14a09a606c99a11f8fda15564ef66f70402826","sha256":"680af6669abc319f9803f0fa26d443df1b6bc29133d88a8e4bea560ffed7288c","sha512":"aced925c428148809afc07f28442b966a58508ea24d6b7203d87c63aab57df93b28ab68183a5dae0d9c12705e0a484685de5a370099c42788c869db686d0dcea","ssdeep":"1536:2THqIJOT7SyEIA1pDEBi8yNcuSEeA1/uypq3SYiLENM6HN26H:YH9vGGq3SYiLENM6HN26H","tlshash":"03f353a6f5a0312de4a7c61964d0bafd152f8245d7224bfbf8273b6447892c70a73e4c","first_seen":"2023-04-05T04:00:44Z","last_seen":"2026-06-08T10:37:29.956946Z","times_seen":24678,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":78,"dns":1,"connect":26,"send":0,"wait":27,"receive":6,"ssl":65},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.staticfile.org/jquery/1.10.2/jquery.min.js","fqdn":"cdn.staticfile.org","domain":"staticfile.org","tld":"org"},"ip":{"addr":"118.107.44.62","port":443,"asn":152194,"as":"CTG Server Limited","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.732Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"staticfile.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Thu, 22 Jan 2026 00:01:43 GMT","end":"Wed, 22 Apr 2026 00:01:42 GMT"},"fingerprint":{"sha1":"2B:FE:D1:4C:B2:15:D4:56:36:0B:DA:6C:73:D5:42:F2:7D:D3:93:46","sha256":"E2:AE:C8:67:4A:05:4C:D9:91:44:79:C1:04:F6:51:97:CF:0E:9D:BB:FB:36:C1:D2:03:9A:AA:71:B4:20:6D:C5"}}},"request":{"raw":"GET /jquery/1.10.2/jquery.min.js HTTP/1.1\r\nHost: cdn.staticfile.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With,token\r\naccess-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS\r\naccess-control-allow-origin: *\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript; charset=utf-8\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\nexpires: 0\r\npragma: no-cache\r\nserver: nginx\r\nx-cache: BYPASS\r\nx-cdntype: readnode\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":93100,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32072)","md5":"e0e0559014b222245deb26b6ae8bd940","sha1":"e2f3603e23711f6446f278a411d905623d65201e","sha256":"89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e","sha512":"60740da8f871b8263675db2421b0e565fc18e95c772f7c3d5916f224263cd71a6a2e6acceab2f6f8ba1c0607951f0198f525d87d0589fa57045b1d5f292dacf0","ssdeep":"1536:q4mCgi8DyCuXXFiJ+L0kJQsJVPEKLQRZdC/RlfDknv+p0WzH/IoSZ7qABZnu0sFv:qGsKXlI2p0WPSbDrstfam","tlshash":"ba93f8ddb2d1b06257bb21bd006f540ff236195e280d8850f129e8eabc74a4d9277fad","first_seen":"2023-03-07T01:02:01Z","last_seen":"2026-06-08T12:36:30.472814Z","times_seen":20850,"resource_available":true,"data":null}},"time_used":1846,"timings":{"blocked":737,"dns":85,"connect":334,"send":0,"wait":342,"receive":0,"ssl":345},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-06","alert":"Sinkholed","trigger":"cdn.staticfile.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/fonts/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/bootstrap-icons@1.3.0/font/fonts/bootstrap-icons.woff?4601c71fb26c9277391ec80789bfde9c HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: font/woff\r\nx-jsd-version: 1.3.0\r\nx-jsd-version-type: version\r\netag: W/\"1a13c-GxDOCA4lYqi36DlQRNPKg9wRKZk\"\r\naccept-ranges: bytes\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\nage: 4271540\r\nx-served-by: cache-fra-eddf8230120-FRA, cache-hel1410031-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 106812\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":106812,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 106812, version 1.0","md5":"df7de9fe96a30f78c7f652f5b00ae016","sha1":"1b10ce080e2562a8b7e8395044d3ca83dc112999","sha256":"011ae1fe8e56c310d82ec3795cb8f86b9dea521dd0bc560a0ae0c2e87baedd4b","sha512":"d8cd580ed4119b0d31c9f3b7ea1b2002ccef31ba26cc6791114e5017e9ccffbfbf57b8611aafa52a8b3e76fc8f77b0d51d333dfcd5b293ddde61da3bbbbda47e","ssdeep":"1536:IEGBxy7wyLnYmvpdgacZtaiLBug50yslpdHfaKoGS3MUt7jCP/KgpL+HoEf7HhDt:0zy7pnYm/zcZta+UNoGS3gpL+Zwul","tlshash":"8fa302c0688d7e9ade37df31a226826373d3094a637c2d6f26997852c946e0f7637341","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-06T14:42:22.497672Z","times_seen":10412,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":26,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:08.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:09 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"7577b60e44610c04fb295e84c172f68e","sha1":"3d711126b2b1d026c0d51f94721fee3a336fcaf4","sha256":"d17b0cdf328a15fa7e3211bb26c23c7a54678612cddcb06c4c59bf3ec1627a28","sha512":"486ab639d7be8c5bb2dab5339df300cc3b79e1c647bcc0f28ca0ba6947277ef19f8725d575cfa898b344744d857377fa2fc138d465a014cfa658f8974a278675","ssdeep":"","tlshash":"4cd023905f7801390c7197e1d4ec171e148e00c390c0c54a59fd8df4345c10c3623c36","first_seen":"2026-02-07T09:42:29.391535Z","last_seen":"2026-02-07T09:42:29.391535Z","times_seen":1,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/xm/5fc.png","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /xm/5fc.png HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 05 Jul 2022 01:20:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"62c391ec-a86\"\r\nexpires: Mon, 09 Mar 2026 09:42:05 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2694,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 64 x 64, 8-bit colormap, non-interlaced","md5":"6ad5509616a5fca9f389801052bea3fe","sha1":"5b53d204b7e6066409067fba9fce5202ff20e9d6","sha256":"6becc3abea448b67731610708852a70c3ceb99059b2dee98da3711dc0620218a","sha512":"18729e5d7521224c032a2a7f18c154b1d02905dda6a06dc3a1af5d876bc5f651b78699589772cd6158bc1bfa75aead83b084bca2b06539a3e4cc9b4a6d476ded","ssdeep":"","tlshash":"ed512be6a252222ac78335be8a25f1dbdf560afb123220858088c13aa40f750c98a573","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-08T09:03:19.626334Z","times_seen":18800,"resource_available":false,"data":null}},"time_used":600,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":600,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/layer/layer.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:04.734Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 13:08:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823062-4d83\"\r\nexpires: Sat, 07 Feb 2026 21:42:05 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-06-08T11:10:22.725576Z","times_seen":13775,"resource_available":true,"data":null}},"time_used":596,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":596,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/imgs/android_down.d99dd6cc.svg","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:05.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/imgs/android_down.d99dd6cc.svg HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/Public/Home/static/css/base.css\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:05 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Thu, 24 Jul 2025 13:08:54 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823066-2d6a\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":11626,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d99dd6cc9eeb67a17b5f64eee801202c","sha1":"6e11cb75b0529af92236763785b69749f62fee4d","sha256":"dc8a78d121b34f655fc063f43d4ef8cec3581d8539369f35f2ae0258a5735954","sha512":"fea5046497f492375a2bde60559ebfb91f67e52685d5b8055c2fd585809cfc98c3bf1a2bb0b20aa00e390c75533ba327d1b66194709fffe3c236fea363c0aed1","ssdeep":"192:Wt1zfau5v7dYMyr8R0tjFnR0tmWi2C/FNNW6xX8jVCZVzLQTsMH6IL:MzfhzS8+pn+mW4FNNFXZZJvw6IL","tlshash":"693255e793a4c0d0690fd5b5cd3b5ae43e1b70fbafc19058326dd944eb429d68b06e48","first_seen":"2023-05-02T21:54:45Z","last_seen":"2026-06-04T15:30:27.643772Z","times_seen":4117,"resource_available":false,"data":null}},"time_used":660,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":660,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_bch","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_bch HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=bch"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"10904bb09b1daed362483a526ff8e854","sha1":"19274c5de9ce1b81d1044b43ef4fe6eaa87ed337","sha256":"0116c104c2f13ddce69e39d999153456172867f1a010794584a4d7ce910e6c9c","sha512":"df06cfa01a385bae10f6834a13f8c5f44d7acbe8e957d91f9582d15c8250ea1a647bff30b4f5e0afa7810264a79f43091199b157f352f2dc8a5865f7156c4ac5","ssdeep":"","tlshash":"b4d0a9e42e392629097293c1b8f813ba69ae8081888242069aadc73239ac0187a06c06","first_seen":"2026-02-07T09:42:29.403987Z","last_seen":"2026-02-07T09:42:29.403987Z","times_seen":1,"resource_available":false,"data":null}},"time_used":548,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":548,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_btc","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:14.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_btc HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=btc"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:15 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"1eeceefa68daecf655d63e8748995271","sha1":"c4fb6c879452cb937c616c0fbfe717397e02fdb9","sha256":"ecee306969efa3c29d4c709c471caa15e811ed5f878e35c4c908ac1d835226a2","sha512":"d6014719df6600e1198322cdcbc672497414c3fadaf74141c976fb40568acb9f16cffff6c4f5045859005d52170a9b0c6e738b27ac8f59fac111f95b25505328","ssdeep":"","tlshash":"97d023a05f3800350c7293e1d4ec171e588e448180d4424a59fdcde5749c50c3712c35","first_seen":"2026-02-07T09:42:29.389376Z","last_seen":"2026-02-07T09:42:29.389376Z","times_seen":1,"resource_available":false,"data":null}},"time_used":378,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":378,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_bch","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:15.968Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_bch HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=bch"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:16 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":206,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"542867be5c174b5cd2564c07e448ad35","sha1":"a63be2aba05ca06a2ddc9fae3cccdb14271a7f8e","sha256":"97fcdd7688aa3f3212b6d41fe00f6dd38969318d9961ec7bb40db1add455bb03","sha512":"1d56c994306c89e43d6c2bbe8de769f2d2b3311286ffd545f7476a2b5d9a789102d61cd878fe485dea9775652624be3ac6207f7278833027cee7b5bb686ddefc","ssdeep":"","tlshash":"a2d0a9e02e39111a087293c2b8f823be69aec04584828247daadcb3129ac0047a06d06","first_seen":"2026-02-07T09:42:29.404708Z","last_seen":"2026-02-07T09:42:29.404708Z","times_seen":1,"resource_available":false,"data":null}},"time_used":459,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":459,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_eth","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:21.967Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_eth HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 8\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":8,"data":"coin=eth"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"3683acd3bb6a3d4a54388cd9de0a6944","sha1":"ea9956056d1ddec872464a633d15751fa112a7cd","sha256":"9ed83f40b96a19176247c8a716bb6c18bd13e3c6eabbc629113febcb23b9c465","sha512":"f577ded582e8ab4dcf89e5b174743cd7b152182a0091a48b5139a796f4e5e4e55f95b2096f7f724b9da73dafdd9780b5847bb4c6a58325c0f45bd9d1e4fbcac8","ssdeep":"","tlshash":"76d023e49f3900151061e7d3f4f4171f585cc451d081d6049efdcb70166c50cb217c13","first_seen":"2026-02-07T09:42:29.372591Z","last_seen":"2026-02-07T09:42:29.372591Z","times_seen":1,"resource_available":false,"data":null}},"time_used":542,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":542,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Public/Home/static/js/layer/layer.js","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.649Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"GET /Public/Home/static/js/layer/layer.js HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 24 Jul 2025 13:08:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68823062-4d83\"\r\nexpires: Sat, 07 Feb 2026 21:42:06 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":19843,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (19752)","md5":"666f4437565d197e9459e19a29f58315","sha1":"afc5c0a1369137e52b37ad5fb63f48202ce31368","sha256":"4a49651ad86a83ecbd9c2ad34e7f5c906b46ae2c4c93c1c8585148f936b7e100","sha512":"1e659ff6c47458dbbaf7e7561402c12441286c255ddec048bf654388e8666a9ceca344e166657c29fce4a08b46470b44c47e8f1c6f577adc2a4e4f4f0e7e1e90","ssdeep":"384:DQ8cuj0z4VfS7ShA3BMJOoM6bs7hwI9b4Zrxy:DQtu8CfS793QODbcI","tlshash":"5f92c85ab5503593216390a9911fa90f30f24d22eb078958f16bf1fd1ebcda562b3f0b","first_seen":"2023-04-11T09:52:52Z","last_seen":"2026-06-08T11:10:22.725576Z","times_seen":13775,"resource_available":true,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":281,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"trezor82.cz/Ajaxtrade/obtain_doge","fqdn":"trezor82.cz","domain":"trezor82.cz","tld":"cz"},"ip":{"addr":"202.95.1.38","port":443,"asn":152194,"as":"CTG Server Limited","country":"China","country_code":"CN"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://trezor82.cz/","date":"2026-02-07T09:42:06.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.trezor82.cz","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Feb 2026 07:51:01 GMT","end":"Tue, 05 May 2026 07:51:00 GMT"},"fingerprint":{"sha1":"4F:7F:0A:3D:8B:18:11:52:AB:70:C9:49:D1:CC:3C:E9:A9:B6:88:99","sha256":"5B:3A:8C:95:0C:63:97:B2:56:6E:B3:52:5A:AF:13:88:9B:1B:6D:EC:78:8C:CE:EA:7A:63:62:EF:9F:D5:87:76"}}},"request":{"raw":"POST /Ajaxtrade/obtain_doge HTTP/1.1\r\nHost: trezor82.cz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\r\nX-Requested-With: XMLHttpRequest\r\nContent-Length: 9\r\nOrigin: https://trezor82.cz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trezor82.cz/\r\nCookie: PHPSESSID=s5jraab2vcslgkg934nbv1v7j6\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":9,"data":"coin=doge"}},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 07 Feb 2026 09:42:07 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npragma: no-cache\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"56bac699f21f8517999f8524998e7976","sha1":"c77b4bbe8ab2d9621c1f927b86ea9484fab636db","sha256":"ee8c926f2a95b924a80b01c37cb53cdf012f830ba675cd082a6c4966317bd95e","sha512":"b5805760d0e69b63bce8bfa2ce1c46eb55d5e6bb312e0bd944992be358590c390015992865713abc5d603b15ac36e087a92fd695dfb15e680549d5bee1b91d2e","ssdeep":"","tlshash":"f2d0a7903f38053a0821f3d258d9135ea09a44868044560d1bfd9b7824ad30c2223816","first_seen":"2026-02-07T09:42:29.405508Z","last_seen":"2026-02-07T09:42:29.405508Z","times_seen":1,"resource_available":false,"data":null}},"time_used":382,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":382,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-07","alert":"Sinkholed","trigger":"trezor82.cz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}