{"report_id":"a26a109a-e6e1-4c78-a8aa-0f08a1ac63d8","version":6,"status":"done","tags":[],"date":"2026-02-22T13:26:25Z","url":{"schema":"http","addr":"punchtoken.org","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"172.67.191.14","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"punchtoken.org/","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"title":"$PUNCH - The Sanctuary Monkey","dom":{"size":69889,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (49182)","md5":"9db290b653d1f0daaf1ebc0b8fafcac2","sha1":"528f23669a41142208177bd1f143a3ca4ec277cc","sha256":"58dbcba7d2e9d441cd4895f4d7e4032707f852194446711835eb3ce38f928975","sha512":"eec3791d69ea37e74decfdc0eb7ecceafd6b1136e93c7b755e1b3713e9520499572be49f523906524fb3925b4ec680573ff03e4c6182d293fe5ffe420d7f8096","ssdeep":"768:mhzQH2L0r82It4uSRhKut5NFgl+FU+xHyvfSDIJPJWf3b8fzwZPROHXL0hDgmwc9:szqyrY44CSwfGRVWVLkDnraLVr3o","tlshash":"2663e825e2040d3f7a0b46ede3d5bb3da269d346d91ba94cb3bc40e1b382cb68d66154","dom_hash":"domhash5966c00566d7e562c7ab9fef0d3ff541","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"punchtoken.org","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"172.67.191.14","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-29T13:26:25Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":6,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50656,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.832629+0000\",\"flow_id\":1323797033142205,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50656,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3443,\"start\":\"2026-02-22T13:26:02.804797+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50708,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.836136+0000\",\"flow_id\":1050005752924767,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50708,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":924,\"bytes_toclient\":3516,\"start\":\"2026-02-22T13:26:02.805471+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50692,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.838729+0000\",\"flow_id\":678052995156438,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50692,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3441,\"start\":\"2026-02-22T13:26:02.805334+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50690,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.841925+0000\",\"flow_id\":2180750382877029,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50690,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":924,\"bytes_toclient\":3516,\"start\":\"2026-02-22T13:26:02.805221+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50684,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.844412+0000\",\"flow_id\":698078280173809,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50684,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":924,\"bytes_toclient\":3518,\"start\":\"2026-02-22T13:26:02.805105+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-22T13:26:02Z","timestamp":1771766762,"ip_dst":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"ip_src":{"addr":"Client IP","port":50670,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO AI Service Domain (lovable .app) in TLS SNI","source":"{\"timestamp\":\"2026-02-22T13:26:02.848579+0000\",\"flow_id\":1802773933475946,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.33\",\"src_port\":50670,\"dest_ip\":\"185.41.148.1\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2063043,\"rev\":1,\"signature\":\"ET INFO AI Service Domain (lovable .app) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"Medium\"],\"created_at\":[\"2025_06_18\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0042\"],\"mitre_tactic_name\":[\"Resource_Development\"],\"mitre_technique_id\":[\"T1587\"],\"mitre_technique_name\":[\"Develop_Capabilities\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2025_06_18\"]}},\"tls\":{\"sni\":\"punchonsol.lovable.app\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3442,\"start\":\"2026-02-22T13:26:02.804970+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-15T22:17:53.373077Z","alert_count":0,"request_count":2,"received_data":23748,"sent_data":985,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"punchtoken.org","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":6,"request_count":6,"received_data":834334,"sent_data":2645,"comment":"","tags":null,"fingerprints":[{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"punchonsol.lovable.app","ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"domain_registered":"2023-05-06","domain_rank":0,"first_seen":"2026-02-20T15:25:12.903476Z","last_seen":"2026-02-20T15:25:12.903476Z","alert_count":0,"request_count":10,"received_data":3600096,"sent_data":4633,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-02-15T22:14:55.382377Z","alert_count":0,"request_count":4,"received_data":138084,"sent_data":2138,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"punchtoken.org/","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"98be1690bf9ca016941907cc9c415854","sha1":"9c22a87c2c60ddbe313df5c49857d1093b72446b","sha256":"73c5c3f9d2cc774e86a343aa5e87d4178920169bd03f7e1706bd33f72253ec45","sha512":"f635e23d933d640d9a98488b8ce618907459e711cb72bf593ca2db1da61e01eb022f48d74f0651fc3ecdfc6628b596043ef40a326ffdb8510e8c9e0ded823ad6","ssdeep":"6144:vfi7wJxwJDsbdCm0xw37rSyBzEAaDvenXZs+d4CmvLi94S8xOK8F67GODSF9wg5:HihOEm0GSWPmvZS8xoF6rSF9J5","tlshash":"7ee4d9ef23663532ae0c53da3ca130c518294bb280fd1afdf89d547a6b9d954e0f65b0","size":671935,"data":"","first_seen":"2026-02-22T01:56:17.351692Z","last_seen":"2026-02-22T23:25:00.568311Z","times_seen":52,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/_nuxt/assets/index.js","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5ec5ae77b101323189b4ed524922f7a","sha1":"c5608922c1424a740ffda24b6f479d6d6e847e17","sha256":"be66a1715e569cffadd1f452c3b25c14d8bc7e43cd5317761cc0cecb239f4bb7","sha512":"ecd63802041657e78d340de96e2c408ecaef84006fde39bd5836ac4b611d208cdf9c919bb2a7d43d37f0728d2c6b2432ba679206d220475aa94a59400fe2c7d2","ssdeep":"12288:MGF9RChUOPm9y0S0lZKuyRMreglFAYVZBbnV:ghUqmA0SmjWOZBTV","tlshash":"73e4b6eb236274256e0c7bd638e12ca118d90771843d1afdf48f9c7a6b9c464e2f59b0","size":699156,"data":"","first_seen":"2026-02-22T01:56:17.354558Z","last_seen":"2026-02-22T23:25:00.52122Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Nunito:wght@400;600;700;800\u0026family=Quicksand:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"09:4B:1C:B6:64:C5:97:5E:E3:CF:D9:FF:1A:01:C4:D8:D7:10:82:7A","sha256":"2F:A7:09:04:89:72:33:DE:1D:F8:A7:A6:EC:9F:0C:74:15:D5:B0:87:85:BE:25:63:1A:0E:73:0C:72:E3:CD:C8"}}},"request":{"raw":"GET /css2?family=Nunito:wght@400;600;700;800\u0026family=Quicksand:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 22 Feb 2026 13:26:02 GMT\r\ndate: Sun, 22 Feb 2026 13:26:02 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":12288,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"0900d37b74e05eda8833074c17e589e8","sha1":"313852a9440840cb2c2ce75f263c981a9eefe89e","sha256":"5c44821fdf7851ceaa04ce86b1e1d97f0cc6366276a318fbfe8cf4f473af142b","sha512":"fce1174706a43552d8770216e847e193af517e53121a2642bea09dfab816f91921e735f6e1a63333bc364210aa0c2815b7197d7cfb405fb1131f53525b3631eb","ssdeep":"192:OH+yptkUkH0yXLkeLHbywkkdiHyy1Rko8NPmvWVOPFv1VrPcvMVEPjvTK:il6DPe9hWJQ31","tlshash":"ba42bcd1046be000db871cc227ce7e32ed4e61157464c57aaffd5888ecabc262365b1e","first_seen":"2026-02-20T15:25:16.841028Z","last_seen":"2026-04-29T23:52:48.394068Z","times_seen":25,"resource_available":false,"data":null}},"time_used":181,"timings":{"blocked":88,"dns":3,"connect":9,"send":0,"wait":21,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-22T13:26:02.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:02 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 20 Feb 2026 21:26:42 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ToLp%2F%2BG6iyBLXgPVE2J30dFtoyBSxM%2BCrr2M717Y7flUhNEoaHduYHH0woImadjdALPQZVHypXo1fJ5O33jQ6hvIAGBua1bdf3%2FADEzf\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d1ed0187e19dd2c-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nuxt.js","description":"Nuxt is a Vue framework for developing modern web applications.","website":"https://nuxt.com","common_platform_enumeration":"","icon":"Nuxt.js.svg","categories":["JavaScript frameworks","Web frameworks","Web servers","Static site generator"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"Vue.js","description":"Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.","website":"https://vuejs.org","common_platform_enumeration":"","icon":"vue.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":53959,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (53506)","md5":"0b797996bb3fda6f3e272cf71817a78d","sha1":"f775b17a2f0954cce18208279e4a5528e6133f24","sha256":"0081eba597a0febc3815c7197a4dab10e333518ac806678f105bbf213f1dfd40","sha512":"4bd0877b96ac643ac663558b5a8be8e3c9ae89fc2ceda2245739384beaca79d0124a1013a6b6563ee6f04e78acf306c246f8a1ecf490ac650c4ffc1c2fea0b22","ssdeep":"768:w5YiyQ6blc3J319wi92cShsAhhis3zzG75xngRTMd8m6DivyruRhJ:YYiyQMmx1FCLkDnr6eyrGJ","tlshash":"2133d73552181e3da50b4ad9f3e5733b92aec38ada1b484cb7fc41b53786c58cd27298","first_seen":"2026-02-20T15:25:16.836405Z","last_seen":"2026-02-26T12:22:39.278628Z","times_seen":8,"resource_available":false,"data":null}},"time_used":344,"timings":{"blocked":46,"dns":17,"connect":8,"send":0,"wait":253,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/_nuxt/assets/index.js","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.793Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"GET /_nuxt/assets/index.js HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Sun, 22 Feb 2026 00:40:07 GMT\r\netag: W/\"699a5067-ab060\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=300, must-revalidate\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ge32zG%2BkJKaPmW7UXBDyaQAgVTR5KIbYyWQJrwpwcuNf3f%2BdtNkkY4ksHEK8iFbNBQ0CSUE2CMzPbrjeCVyF5EoXmzWYqKaGRqdpVSFs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d1ed01b6f67481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":700512,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (55552), with no line terminators","md5":"d5ec5ae77b101323189b4ed524922f7a","sha1":"c5608922c1424a740ffda24b6f479d6d6e847e17","sha256":"be66a1715e569cffadd1f452c3b25c14d8bc7e43cd5317761cc0cecb239f4bb7","sha512":"ecd63802041657e78d340de96e2c408ecaef84006fde39bd5836ac4b611d208cdf9c919bb2a7d43d37f0728d2c6b2432ba679206d220475aa94a59400fe2c7d2","ssdeep":"12288:MGF9RChUOPm9y0S0lZKuyRMreglFAYVZBbnV:ghUqmA0SmjWOZBTV","tlshash":"73e4b6eb236274256e0c7bd638e12ca118d90771843d1afdf48f9c7a6b9c464e2f59b0","first_seen":"2026-02-22T01:56:17.354558Z","last_seen":"2026-02-22T23:25:00.52122Z","times_seen":53,"resource_available":true,"data":null}},"time_used":461,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":283,"receive":178,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-gallery-1-CZt1JFPO.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.816Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-gallery-1-CZt1JFPO.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 152182\r\netag: \"5e2a3bae01de5c9db2712b9306106658\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=cHbEo2TpacUbzzAqTofOg6BZMJFi0hqFWWcvssGSI2I-1771766762.893127-1.0.1.1-ZNaX8C2MmGtymahyo2lbcH9eCz9ZGjE0o2wmRsMD9060KSKtdXZcENkSd_8qt3XC2R2qfDLYgcpbbmFZmwvrAglwBykn7fR8jv2nL4QdjFwHavgI1DLjNizFKENT6yeg; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c1a81f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":152182,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 986x1753, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"5e2a3bae01de5c9db2712b9306106658","sha1":"15d1ec34db0f99f80ff5bad99a7547ede107ccab","sha256":"04c9cd9b7f2964f3a57f5c3ca6f6c9ff5d415c4682d9a682d5ef724678b6e015","sha512":"f5dd2e5c79ce8b70c8d6939a9d209649f5038f249a4a88e16d7cbc90e85345accedf4fa8687caf5e06801c097a847b860df5e78e5189636ff9cf4d9bf1eaefa8","ssdeep":"3072:TzwyNQoCa10OZp+aHNmvsZV4t5RfUWUFjeYCFGwOzSIPznCW:HNQo6KntmEW/UWKZ1Hz1PDCW","tlshash":"98e3121defdc5ec70dde32a3889431419856cb3575966748af266c3d0228b1172dffa4","first_seen":"2026-02-17T14:21:32.252902Z","last_seen":"2026-03-07T02:08:56.715044Z","times_seen":21,"resource_available":false,"data":null}},"time_used":443,"timings":{"blocked":69,"dns":19,"connect":14,"send":0,"wait":239,"receive":36,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/geckoterminal-icon-BShTt9Xs.png","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/geckoterminal-icon-BShTt9Xs.png HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 53742\r\netag: \"5392b87808e89f951bf6b96067e3eeba\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=DpfOiYK4qLwE5h8PMIwCR9LIQiwhMpGdS7ThzYDsI0g-1771766762.8881063-1.0.1.1-ZPsFS1pN5j8sV5H1Srnw8k0zo.Dzayvkgb5tQJ0yEWKD0D8qreDGVHnTGQki.Zt_xF_Q2rXxYklCkhHQkfLBut3uPVm.wCcEo39HgKfL1Xhs3eCh61q0Yijt0xZEglzj; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c0a67f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":53742,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1080 x 1080, 8-bit/color RGBA, non-interlaced","md5":"5392b87808e89f951bf6b96067e3eeba","sha1":"0906bb158b47690894bee802070eeee8fe54cb75","sha256":"22c2f109087d11d2503811de864ba4e8062dc92de6ae45448f77371f398d5f7d","sha512":"e8cdbad40abb582cdc2cef196031f51dea387f7690d9e7aeb7a1d39e7de6dd7353e474aade7dd2b80fb0cdd93a31e6afeb417195ed95eb82c6f1c4b7eaf187c5","ssdeep":"768:rUUZoIl+prgHwAc+km2memzjS1VUo6vhXcxa7PM19ebLDxE8EBzwPdyvO:rpyJpox2memUGo6vhXcH19ezxgJG","tlshash":"9e3302e9b564f588caa1f8b10443aa514e6f1aefd7cc85124745dce4271c80a02fbf7e","first_seen":"2026-02-17T14:21:32.234965Z","last_seen":"2026-03-07T02:08:56.709109Z","times_seen":26,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":60,"dns":0,"connect":0,"send":0,"wait":232,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/moonshot-icon-Bztdtrh4.png","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/moonshot-icon-Bztdtrh4.png HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 15086\r\netag: \"a2e5f67b4eb9a016c2ca745613d4d682\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=_YTDNfm0iDpIrE.JpL91gaBw1HdWyNsIiFTow1jlroU-1771766762.8905458-1.0.1.1-9VW9x2uYQFv8RmuLQPLrnBhPLWu7x3pDD9gydaerCDIwkUQbGTG.qFByTNVwKfotEDgyR0HbxOGi2kwlsgzXIm7NVg6dABoWzPx3ufZXm_a9MlFi54J856KJmVO.8LVD; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c0a77f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"a2e5f67b4eb9a016c2ca745613d4d682","sha1":"8580d082af65d9fb1e8bbdb3244b89af982a9358","sha256":"5f0143cdd2081b2c185ae85a0939ccbd59a5810a108e1ec3f30de012b6e5b462","sha512":"c29554a972bacce0448a51ed79a77419540f8b28507736df2592e8bd2bf8590e912c615cf3747540f26342866c8929a15bae4a93da236fe1a1d83eb16ddefefb","ssdeep":"384:jHcbimE0SBu5wj85RR+Cu8q3ovBouqrlXwdvcuPl00D1F3FNvZzi6HLM:1mBmUR+Cu8q3ovBouqrlXwdvc4hF3FNQ","tlshash":"0a6223551b77499feea10b3c45420b3bfdb88d1d443e95ed6fa27e688a3f280bac5140","first_seen":"2025-09-17T08:05:11.181885Z","last_seen":"2026-06-04T07:10:47.774273Z","times_seen":38,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":61,"dns":0,"connect":0,"send":0,"wait":241,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/nunito/v32/XRXV3I6Li01BKofINeaB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/nunito/v32/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://punchtoken.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 39128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 20 Feb 2026 02:24:37 GMT\r\nexpires: Sat, 20 Feb 2027 02:24:37 GMT\r\ncache-control: public, max-age=31536000\r\nage: 212486\r\nlast-modified: Mon, 15 Sep 2025 17:03:34 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":39128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 39128, version 1.0","md5":"166202cc391c71a57730bed12cbcb159","sha1":"76388dbfe374be06fdc6f9ba38d3f4e479025eeb","sha256":"ba344451eab25b217a165363b1982048a5e5830a0daf36577973955a04cac793","sha512":"9f4d1c14aa729e837b964898a1dd27e99ff674256c43326aa982cc0c17fa8b0d71a0b7df627f03cb4ac6ec7f22f0a19d65302743ff09187ce81414dde74c43e2","ssdeep":"768:lxbc6Qon+A9wOfdj2rELqjOmaLqLqKeI+00t0xIj:layndm0j2cqjOmGq+tbUIj","tlshash":"d9030284fd6a02d8c7fc1f6ef25a9f28272c2078440b6a9c44a79a6bd5975f84dd3330","first_seen":"2025-09-17T01:48:11.920934Z","last_seen":"2026-06-08T06:16:49.515222Z","times_seen":31557,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":290,"dns":2,"connect":8,"send":0,"wait":8,"receive":5,"ssl":271},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/api/config","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"GET /api/config HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://punchtoken.org/\r\ncontent-language: en-US,q=0.8;en\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:04 GMT\r\ncontent-type: text/plain; charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dhLrq4JJmTC4ARaa%2BPHLXtYz%2Bxnbw3ekdISccftdBfBNF972khjLI%2FPzcuACpV6SRCCrcKoGIph3Q%2F2q9uJgnIuh0YVHq2hc8d05K89l\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1ed021ada6481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":218,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"data","md5":"1b12e5b59c48fdda86d3a1022fbf610d","sha1":"5d30a45b0ed70a9eaa6b918b2f6f2bbf9ad2718b","sha256":"125e144c58181edcd5e9cafef9cccd9deddba5af94b7f048f7814bd95d67b50b","sha512":"91bcf907d0e1f10f0a726db0f71505cf6d6cc979e1beea369f190e8498342bb52145caa1344ea22c3ceb9319ad722720d995640d38de75d696020b817c30eef0","ssdeep":"","tlshash":"d7e028709750854555d711e5d50500eac7c5bd80d5d01070f3d0c1d48034f40189a3e1","first_seen":"2026-02-22T13:26:30.576224Z","last_seen":"2026-02-22T13:26:30.576224Z","times_seen":1,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":241,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/style.css","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.792Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:02 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Fri, 20 Feb 2026 21:26:42 GMT\r\netag: W/\"6998d192-126ad\"\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=864000\r\ncontent-encoding: gzip\r\nage: 58814\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WjhNaUH7wI1vsXeV0qBHmOvxbZ4ZH6bJ2YIINlKYx6jGnQrfSb9xp1tLYlYkNg1BaWhOD%2FZrAP6MTwKwgbvCrMqH24PZ5T2ydoAdOCRJ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d1ed01b6f62481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":75437,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"3db392db90ba3cc01311c0934259cbae","sha1":"b74c985f7a308e5d8e770d4157f3786987e82109","sha256":"380ba669e49b70cbae257c6e8357f2c2b1f640025412aed799ae94448a7a29ee","sha512":"0cb6fd59a691f0c394e8bf22ce6343c36930ab843758f8d515d119d8c2eeaabbb33bca5154ab685c5ace5e8130eeb2ef8795bfc1eb5bb818db1a060078915fd7","ssdeep":"768:07XhHtNsYdksQU+ZNYrfAaGsCL4U378VQZkt5FN/GToLAnJ:chHtaYdknUkaGsCr378VQZkt5FNCoL8","tlshash":"b2738419b91da13e2c27a0e983ccbaec611df0c0dd3b06b5be9a412127d27f51dbb558","first_seen":"2026-02-20T15:25:16.838811Z","last_seen":"2026-02-28T18:00:39.966455Z","times_seen":18,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-hero-2QRL_pVI.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-hero-2QRL_pVI.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 81426\r\netag: \"80067ae3e5f51ef1b78614943136973c\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=KwBh9Y_P.kME_fP6tUwgvobv2bbUb3HoyuPLiYCeuSs-1771766762.8912594-1.0.1.1-r8S1So6sShMp3QebsRGsjMK96.3ZBdRLm.Bdi64EmKb71rFENKiZ5_r9iB5V7K6ozQkUu6tbT6E_qMd2Dlhj1rdqERqyZokjL52sUTSok_CSZMX_snq0rd3lEJXTEahp; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c1a78f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":81426,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x459, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"80067ae3e5f51ef1b78614943136973c","sha1":"4066cbdfde0ed7bcbb920646000eec76dcfb2c48","sha256":"78902d2270e4f2ea8bf370a453952d084904bf943edfe506cfb217b9e29de148","sha512":"1d21edf7379727c214676fb73578c6814792358d69ef1d14c864dc1cd349ae3a1f212ace945044a7e3d3c109f5b6c28c5b08db171c0c717bc63470def291e7cd","ssdeep":"1536:RW21bgv9DGhrg5EJx5tf0w6DSj/nfaf3xJz4T/dP3DG6ui8XwaoejpIDIl39yUdh:Rz1bJrsEJxj0w0Sj/CfhJz8/935Za7pN","tlshash":"008302887112dcb2eee9333d55640e8bdc4012bfe9e2e20b9e535762b6600d0c96d7f6","first_seen":"2026-02-17T14:21:32.247881Z","last_seen":"2026-03-07T02:08:56.714559Z","times_seen":23,"resource_available":false,"data":null}},"time_used":423,"timings":{"blocked":87,"dns":18,"connect":14,"send":0,"wait":229,"receive":11,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/nunito/v32/XRXV3I6Li01BKofINeaB.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/nunito/v32/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://punchtoken.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 39128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 20 Feb 2026 02:24:37 GMT\r\nexpires: Sat, 20 Feb 2027 02:24:37 GMT\r\ncache-control: public, max-age=31536000\r\nage: 212486\r\nlast-modified: Mon, 15 Sep 2025 17:03:34 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":39128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 39128, version 1.0","md5":"166202cc391c71a57730bed12cbcb159","sha1":"76388dbfe374be06fdc6f9ba38d3f4e479025eeb","sha256":"ba344451eab25b217a165363b1982048a5e5830a0daf36577973955a04cac793","sha512":"9f4d1c14aa729e837b964898a1dd27e99ff674256c43326aa982cc0c17fa8b0d71a0b7df627f03cb4ac6ec7f22f0a19d65302743ff09187ce81414dde74c43e2","ssdeep":"768:lxbc6Qon+A9wOfdj2rELqjOmaLqLqKeI+00t0xIj:layndm0j2cqjOmGq+tbUIj","tlshash":"d9030284fd6a02d8c7fc1f6ef25a9f28272c2078440b6a9c44a79a6bd5975f84dd3330","first_seen":"2025-09-17T01:48:11.920934Z","last_seen":"2026-06-08T06:16:49.515222Z","times_seen":31557,"resource_available":false,"data":null}},"time_used":367,"timings":{"blocked":175,"dns":1,"connect":7,"send":0,"wait":8,"receive":9,"ssl":163},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/quicksand/v37/6xKtdSZaM9iE8KbpRA_hK1QN.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/quicksand/v37/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://punchtoken.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28244\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 20 Feb 2026 17:21:42 GMT\r\nexpires: Sat, 20 Feb 2027 17:21:42 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 27 Aug 2025 19:19:09 GMT\r\ncontent-type: font/woff2\r\nage: 158661\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28244,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28244, version 1.0","md5":"9d503278216c2225184a236c64e0924b","sha1":"0c24c621374506ce70403a7473b47acd86bbf919","sha256":"2add7d60b1cd2ab84c9967e23d5ec08eb3fc9635c46855b17d59404dec6b410e","sha512":"fa1aca723eb40b6026aa1d21b36ce2573e4164516c9a0b55ff830a434c3954833a06b1df76236b1d682107df1bd3d263ed19cba854c1a6795566a7091749696d","ssdeep":"768:/6zZ6KBVHUlHvwCa0z1sCvODsIBMTKmJ3GG5x4:yzdKvwtszvdNjz4","tlshash":"3cc2e083d14afb33d0afb77adc52d022e9756bccec7e587a97a900398895c1b0644285","first_seen":"2025-09-02T18:36:17.739185Z","last_seen":"2026-06-08T05:02:59.199793Z","times_seen":11150,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":291,"dns":5,"connect":7,"send":0,"wait":10,"receive":1,"ssl":270},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/api/visit","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"POST /api/visit HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://punchtoken.org/\r\nOrigin: https://punchtoken.org\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:04 GMT\r\ncontent-type: text/plain;charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5IKhGVI4mWqMpGKmDVSeP%2BpaTKTDLXBV93YYZzq2JNGHY1lN%2FKl8wYFEkTmDAF5pCBwHZ2Nh%2FC1ec%2B%2BUQR8EKNusyYofqZY0A7VV%2FZSl\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1ed0226f70481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-06-08T06:24:32.97497Z","times_seen":423396,"resource_available":true,"data":null}},"time_used":291,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/favicon.png","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:04.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 1661401\r\netag: \"2a6e620f2dcd10f7ea58b829b492ccec\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=ExUcgxuNHdSFZoSaV4fZKlDMfED7U1d.cZQg_YhFHjs-1771766764.133284-1.0.1.1-SAXaRO4v3KoVwCFSjLWgRqVHrEA05tERTjq5yRZg8OAZL.2WSQzc.ej35Fq_7AaPw1fC02F1QI1Gwupd7Bwx4utP1qo78uNWy1i9C.lI3yjT80JvMTJRmP98Sy2J4vaf; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:04 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed023d8c7f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":1661401,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGB, non-interlaced","md5":"eff526a069ca8d9ae8bcb424e369cd5a","sha1":"1bf25380b4a3826d753a71e1356d328134237c58","sha256":"7e38c898082469e9fd51c8844c125e6f7a64459c592e8cd5d8095bd33ee68324","sha512":"59c67501beeb9641f4d93063f85dff6581b6168ce940f840709976c91d1d385e566ee5c9b8fa68766bd09bf2e41ff9391182f678624e3b5fe7bc988268a7794d","ssdeep":"24576:r/8yIRjHvrkWPpAi0B/82Yx3EAlweTyBVUWOv:Lp+jHvrkoAi0BdYx3E0TjWOv","tlshash":"a1253367bbe47b61c375346692d25a73b3c4f823363a06020c5ca964fb297ec22587d7","first_seen":"2026-02-17T14:21:32.251647Z","last_seen":"2026-03-07T02:08:56.713728Z","times_seen":31,"resource_available":false,"data":null}},"time_used":238,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":141,"receive":97,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-plushie-Ci7cXJsh.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.797Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-plushie-Ci7cXJsh.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 179500\r\netag: \"654f5434fcdadc41b5b9bd7f1edf86d3\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=f.DusYTIkRQSIv95hYJWkhxNdCS54zen9vUuVeDRrTc-1771766762.8920715-1.0.1.1-e.UV8R2vBsktVMQqJDhUi54UbiZur3RGKDDgwxg9U.yKGBfMEAhYvpsXV1.rvzd2lsqR8QfrxGl8Bjf0WYiB6siToSpASw9eElMmFetXA0YY_D7wTOqWeLY.TrbITMfA; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c1a7ff9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":179500,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1066x766, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"654f5434fcdadc41b5b9bd7f1edf86d3","sha1":"bca4d7b913e991b3648b1abe32e4071b66b9016e","sha256":"75c73305c80bc17dda83a1ee8a05ba7d3201c1ccd66ab440367a14a65c25c71d","sha512":"b1c54f3b8a081bf6ddbf518b3fdaf2bacb1c1460ad61d50b1069be94c37b20e8c50b8823c77342dcf527015b41488a69525650e61cb106aef20cf3c2d1ba71e1","ssdeep":"3072:+k8qbuhkubk8lGFRHr90SROR8msLSUkA8IpGHlU7kc1BjQmXlmiWYJVQvzq5i4B:MqbuX/8p0SROR8msLSUkNPa7kMBMmXll","tlshash":"11041266df1605578368fcb18a864224edbd810eff0921dad495af00dc309af4ab72fd","first_seen":"2026-02-17T14:21:32.249139Z","last_seen":"2026-03-07T02:08:56.71208Z","times_seen":23,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":87,"dns":18,"connect":14,"send":0,"wait":228,"receive":39,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-gallery-2-BFjUVpFJ.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-gallery-2-BFjUVpFJ.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 203076\r\netag: \"23f85a24c9e23f92fe2a32b749bb1037\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=p21iiRWv1sEHdLx1CWmoI_fO0DtebahHrmHmmJqWSj0-1771766762.8929746-1.0.1.1-k7wv_Vpp9ClCivBEge6mcYV00rLmoYlzUMKDguKF3Z0z3zOx2bGaQ2Oi1iJW2aoOpbYxWJ7o0FvakIrs_eETx72iHwSrpi6UtZDI24_hzp__KZtywpX4jrs2QgUdig2I; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c1a84f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":203076,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1279, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"23f85a24c9e23f92fe2a32b749bb1037","sha1":"2cf225a3e8058c91c90ddcbc035d050603d98447","sha256":"7b5052884e4fb41fc8e7053761f386cbcb06b082b5c921ca753844b306112a53","sha512":"571452c6bfcac38f3ba8d9f6f977e13d3906eab6e9e55617de00e68be1f8888c7f0fbf831d9691d7e81badca7ef4197cd6124ae1325bf2f071f1396fd9b2ca23","ssdeep":"6144:78JG3UIRZGf37JOcsoboa/SS1degq5d1Dg:780RZoOVoP/SS1VL","tlshash":"de1423b038631817bddad6b703c0f7cf365c69b64a189b954192b93d0507a78768cbce","first_seen":"2026-02-17T14:21:32.237529Z","last_seen":"2026-03-07T02:08:56.708426Z","times_seen":21,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":68,"dns":20,"connect":14,"send":0,"wait":228,"receive":43,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/quicksand/v37/6xKtdSZaM9iE8KbpRA_hK1QN.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"C0:70:82:EC:9D:28:B5:4B:51:02:7A:C7:BE:63:94:B1:DC:64:29:FF","sha256":"5E:E3:2A:C0:F5:10:AE:D1:9D:11:A4:88:D0:66:44:3B:31:B7:05:05:0D:A7:35:66:17:B5:35:88:23:3C:E3:F1"}}},"request":{"raw":"GET /s/quicksand/v37/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://punchtoken.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 28244\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 20 Feb 2026 17:21:42 GMT\r\nexpires: Sat, 20 Feb 2027 17:21:42 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 27 Aug 2025 19:19:09 GMT\r\ncontent-type: font/woff2\r\nage: 158661\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":28244,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28244, version 1.0","md5":"9d503278216c2225184a236c64e0924b","sha1":"0c24c621374506ce70403a7473b47acd86bbf919","sha256":"2add7d60b1cd2ab84c9967e23d5ec08eb3fc9635c46855b17d59404dec6b410e","sha512":"fa1aca723eb40b6026aa1d21b36ce2573e4164516c9a0b55ff830a434c3954833a06b1df76236b1d682107df1bd3d263ed19cba854c1a6795566a7091749696d","ssdeep":"768:/6zZ6KBVHUlHvwCa0z1sCvODsIBMTKmJ3GG5x4:yzdKvwtszvdNjz4","tlshash":"3cc2e083d14afb33d0afb77adc52d022e9756bccec7e587a97a900398895c1b0644285","first_seen":"2025-09-02T18:36:17.739185Z","last_seen":"2026-06-08T05:02:59.199793Z","times_seen":11150,"resource_available":false,"data":null}},"time_used":625,"timings":{"blocked":307,"dns":0,"connect":7,"send":0,"wait":8,"receive":3,"ssl":296},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.142.234","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 26 Jan 2026 08:40:56 GMT","end":"Mon, 20 Apr 2026 08:40:55 GMT"},"fingerprint":{"sha1":"09:4B:1C:B6:64:C5:97:5E:E3:CF:D9:FF:1A:01:C4:D8:D7:10:82:7A","sha256":"2F:A7:09:04:89:72:33:DE:1D:F8:A7:A6:EC:9F:0C:74:15:D5:B0:87:85:BE:25:63:1A:0E:73:0C:72:E3:CD:C8"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 22 Feb 2026 13:26:03 GMT\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-06-08T06:45:22.790432Z","times_seen":29567,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchtoken.org/api/is-banned","fqdn":"punchtoken.org","domain":"punchtoken.org","tld":"org"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:03.783Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"punchtoken.org","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Feb 2026 17:53:33 GMT","end":"Fri, 22 May 2026 17:53:32 GMT"},"fingerprint":{"sha1":"21:CA:6B:15:98:50:0A:12:05:57:FC:91:A3:53:07:66:81:AB:4D:C3","sha256":"14:0C:ED:97:1E:65:66:C0:C7:FB:E8:F4:BB:26:7F:F0:DD:89:19:57:A4:95:6B:F6:2E:02:3B:10:91:C3:2E:DE"}}},"request":{"raw":"GET /api/is-banned HTTP/1.1\r\nHost: punchtoken.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://punchtoken.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: text/plain;charset=utf-8\r\nserver: cloudflare\r\npriority: u=4,i=?0\r\naccess-control-max-age: 86400\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, POST\r\ncache-control: private, max-age=300\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GlADsQLE265QnevyPQRTVO5yGm9vE60DowOvB6xjrOOaQXxtbAwTXTn3auatvq3mSVTPUhqz4eAGSEvMLEXBGmuNxmDT%2FvUw7soTLdAM\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1ed021ad9b481e-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"very short file (no magic)","md5":"cfcd208495d565ef66e7dff9f98764da","sha1":"b6589fc6ab0dc82cf12099d1c2d40ab994e8410c","sha256":"5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9","sha512":"31bca02094eb78126a517b206a88c73cfa9ec6f704c7030d18212cace820f025f00bf0ea68dbf3f3a5436ca63b53bf7bf80ad8d5de7d8359d0b7fed9dbc3ab99","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-03-07T01:37:31Z","last_seen":"2026-06-08T05:44:23.392222Z","times_seen":114386,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":178,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-22","alert":"Sinkholed","trigger":"punchtoken.org","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-cutout-DhN8p0Ob.png","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-cutout-DhN8p0Ob.png HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/png\r\ncontent-length: 925786\r\netag: \"1b6d87a1d7187b75190b6a886065f20f\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=TV2.RT6VZfWBYS6.cG27pCetrGpUyD_lWQxv3RHTz.Y-1771766762.8844433-1.0.1.1-JDqP8VT1bbJ6m.rztee20tf1rat_HlYdmx65NMCzVF4cg7E1L3L9DnXKc8eC_zEj9d4pPj0twW_uwhohG7McUm_NSxmh5T99XpDGI0hhqYMW._O3h.lxuHZV9TyDrb_X; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c0a42f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":925786,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1184 x 864, 8-bit/color RGBA, non-interlaced","md5":"1b6d87a1d7187b75190b6a886065f20f","sha1":"4b939ceff15ac4564debb54655e965a88f28bc3d","sha256":"cba14be5b543d63106d289b4a81555c80a8df17ea6a0a61eb63db96b5240172f","sha512":"44ae99135a4b08c56e36357a2fc2f3bd84f97405c953a78190e6eb5099463e3d78a8d60b9246be802d2bab6a0eb1a0826418d673f42aa73fc6a6e307bfb360ea","ssdeep":"24576:mFiPnUrZ9lkkD9QxWV/2B3FpdGeoa+8tf1SII6nk6Pa5YV6Pl42M:HfUrOv6/yEeoa/3I6koh6G2M","tlshash":"991533e46b375c88c03e040a8da44bc57ce4f8d1bed96a76331d999031daf54f8aeb49","first_seen":"2026-02-17T14:21:32.246667Z","last_seen":"2026-03-07T02:08:56.707785Z","times_seen":30,"resource_available":false,"data":null}},"time_used":624,"timings":{"blocked":82,"dns":21,"connect":12,"send":0,"wait":248,"receive":201,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-gallery-3-CYdJsfBh.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-gallery-3-CYdJsfBh.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 73476\r\netag: \"afc057c19d01d46b2a32989080fc1208\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=DODso8v_faP8mzP6_kfxkL5am727utnSYb4N7QQPPRI-1771766762.902931-1.0.1.1-0cTBFABb9Jai8_F2HJw9WQYGwsuUa40._8wVSoqT.PBhTNMJlzgTgtvb8T15yapK0_BXWpxXnY5ikTMc0WRCQypJ7doAU0uvbK8QbZdPf2dD.i9WqQubarg2k1aiv42x; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c2ab6f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":73476,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1563x1173, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"afc057c19d01d46b2a32989080fc1208","sha1":"2695214084112c3ca473c164ad6917843e94ee6f","sha256":"53b08ede0ed49f4a2656b14d9e53324cac9d90479043ca7668530aedf2b75db3","sha512":"31d348ee4bd6ae54d28a9bbc355e40ac3b16d6ed071c6da5311e51442de0f20d607d034a2a5b02fdb8f7450db9dd71b27113967363712959d49302209147bfbb","ssdeep":"1536:T1F4Nxzi4S4fea8BwurwJnF5nWi2Nvf46Ik4tRVuEGmjWoQ24NInKxoJO+y:TX4Xzi4S4B8BwowVWiEvf4K4bVuEGwt4","tlshash":"827302215dd66b4240e58e95f3c8faf585b0aa40099fd3ec098ff81cc07a96436ee02b","first_seen":"2026-02-17T14:21:32.23893Z","last_seen":"2026-03-07T02:08:56.712586Z","times_seen":21,"resource_available":false,"data":null}},"time_used":421,"timings":{"blocked":77,"dns":20,"connect":14,"send":0,"wait":217,"receive":16,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"punchonsol.lovable.app/assets/punch-gallery-7-BwVZrCZ-.webp","fqdn":"punchonsol.lovable.app","domain":"punchonsol.lovable.app","tld":"lovable.app"},"ip":{"addr":"185.41.148.1","port":443,"asn":61207,"as":"Hostek AB","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://punchtoken.org/","date":"2026-02-22T13:26:02.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lovable.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Feb 2026 17:19:43 GMT","end":"Sun, 17 May 2026 18:19:24 GMT"},"fingerprint":{"sha1":"0F:8D:42:E0:96:F5:48:39:7E:49:C9:ED:4C:1B:E4:D5:15:A1:03:64","sha256":"FB:11:B9:D1:AA:F1:F0:D3:E7:B5:F7:E4:35:88:29:2D:8E:44:99:C3:11:3A:44:9A:D8:73:1C:05:F5:24:B2:E3"}}},"request":{"raw":"GET /assets/punch-gallery-7-BwVZrCZ-.webp HTTP/1.1\r\nHost: punchonsol.lovable.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://punchtoken.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 13:26:03 GMT\r\ncontent-type: image/webp\r\ncontent-length: 247742\r\netag: \"2bdfe4963ac5c5106e2dcc6e61a7d3bf\"\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-content-type-options: nosniff\r\nset-cookie: __cf_bm=ch5uOtFmgnr4gzZiIO9.7SWeGweF8qnvDp1vDfwqoqo-1771766762.887587-1.0.1.1-JyBHxs7nuLY2u1n8an.h48RHgAJPalLfJ592ONsobufO7KyDWtm29jFr7xdTTMZAFP8OD4Eaf3rfttq6G1eqU.Y9r59iqVB3ZapJcQGWZF9AkcK9AIHj6v6vCJi4LF7L; HttpOnly; Secure; Path=/; Domain=lovable.app; Expires=Sun, 22 Feb 2026 13:56:03 GMT\r\nserver: cloudflare\r\ncf-ray: 9d1ed01c0a64f9c7-CPH\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":247742,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1278, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2bdfe4963ac5c5106e2dcc6e61a7d3bf","sha1":"de07d6d41707e0e6681b71586530a196d16b5a3e","sha256":"f4414fdbd433e72fb650eaf4d7244ecef3a14bc45bdc27bf816ec6cf0fa14852","sha512":"6cd27a94e4c53bd89ebcbdbb660f3a7bd517c4532ff910b5403a72d763383de35e39be7e9c7a0025247657eb4a3427f0a59311b102ec238ade6dc79c88324db2","ssdeep":"6144:Xc2D0EC5xkZIVlId5vBbBw9F+h/LWddxGvQCaLUaYQM2HP36/5gcS2:Xbn4xkZmm5pBwb+h/qddxGvQxLUaYwHw","tlshash":"61342330b78791d5dde4e3b3da82e92aac6f587a90870b3cf5c7ad01d49a08b2451cdd","first_seen":"2026-02-20T15:25:16.854208Z","last_seen":"2026-02-23T01:28:54.110293Z","times_seen":8,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":61,"dns":0,"connect":0,"send":0,"wait":207,"receive":56,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}