{"report_id":"a6f84ee4-cc79-41b0-bae3-c6c0408a6e34","version":6,"status":"done","tags":[],"date":"2026-05-30T01:23:07Z","url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"ip":{"addr":"104.21.57.63","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"title":"AMLConnect and AMLBot: Securing Web3 Transactions Effectively","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"ip":{"addr":"104.21.57.63","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-04T01:23:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"tron-chk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"tron-chk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"tron-chk.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-10","domain_rank":0,"first_seen":"2026-05-30T01:02:10.434288Z","last_seen":"2026-05-30T01:02:10.434288Z","alert_count":2,"request_count":1,"received_data":2531766,"sent_data":481,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0cdb9a6c0076c7c2ad8bc372367a0b9e","sha1":"bbe0ee2e1782273da6d07b888efc6f012f8bee09","sha256":"e3b49af4685cef88e1350f5c4698c32dd022b086c2ecf07538e8526ff7b11898","sha512":"65516f24682b5d3fd88a5cb1fda8d22705440f8d8a57019faa2e1a77dfc79cf7f68338d08077134f3bd589760f6a7449bb420c29a7acdfbade1b01fea8661031","ssdeep":"48:mILhbe0LSce+lTaPVG3XiECVMsOqVm4HEHHvi/MSbsPWWZ5ApmP5AeaD8OgWFP6i:mIgD/E89iH+M+sPPE3R6kagZ","tlshash":"b0910d15adba267888ef711d37ef64343ab051039904dc003c6cdb995fb8ea1a5fa7d8","size":4391,"data":"","first_seen":"2026-05-25T10:16:29.415072Z","last_seen":"2026-05-30T01:23:09.200645Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"39e120dc62590a072858cc7e1cc6d989","sha1":"99a09584204f2a286a92c8f7e9f265b6beceb464","sha256":"1d1593df9e953cccf896c388ffacd815ba09ec86433e46fbf855376f671bbac0","sha512":"4f1f4df4810f3ec5f5baaf763315bc8029c776d1d6fcea3b5eb1892db48beced9b806324d167fea1b371164e676e3d756f00cb4c7a404dbd4978fec95f2499c4","ssdeep":"","tlshash":"0f81eeeb45a32ae0ad63757e5bcf4500b57414232c05dd203ddc8d890f9ce5c2abbba9","size":4090,"data":"","first_seen":"2026-05-30T01:02:14.251446Z","last_seen":"2026-05-30T01:23:09.20129Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"tron-chk.com/","fqdn":"tron-chk.com","domain":"tron-chk.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-30T01:22:44.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tron-chk.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 10 Apr 2026 13:45:19 GMT","end":"Thu, 09 Jul 2026 13:45:18 GMT"},"fingerprint":{"sha1":"0A:44:86:88:D7:AE:D9:D0:E4:12:69:1C:59:7B:B8:F8:DD:19:5E:DD","sha256":"1F:AA:16:56:73:BC:07:80:2A:6B:D4:E5:E3:9F:C8:3E:1F:C3:77:37:D1:48:50:7B:A4:5F:C5:4E:AE:34:89:00"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: tron-chk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 30 May 2026 01:22:45 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Tue, 28 Apr 2026 09:03:07 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=b4InayQrgwLyahIb2Zit0iaN%2B%2FaLq%2FCOiF6BIDPLRn99HceeITA6LFjEzh7YuYvz4CzMN4Nf7G0%2FfPWIC%2BldY%2Fnox7kdI5ZobTsvSJJIYHxgABRRzS%2FfBCwYmXP9gLE%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: a039edf6cbc056a2-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2531048,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (57202)","md5":"b03f57742cbf6795b622a19e7246e4ab","sha1":"e4fd2d828c4b371d573330ec778ca4aff094f98e","sha256":"e5a2d57081027c8f8756f785944d8990685eb6f6340fcd5ddb02622271a10c69","sha512":"1f14293fd50f661e5209a6c3584603949f7375d115fea68d44dd9f0bf9a5b18532c04cdb0ce0a9fd6d13aad4883827297a371bdcb31e81c394c4ae79eb891472","ssdeep":"24576:mEdLdw1/rMakE4Lfwq/rMakHZLJw7/rMak6OLvw9:mSWqM96cc9","tlshash":"602512b2602a4851c12704abb1cf23d6ae78b45764589f24bedcbd814f88de0797d7f8","first_seen":"2026-05-25T10:16:29.413813Z","last_seen":"2026-05-30T01:23:09.199948Z","times_seen":4,"resource_available":true,"data":null}},"time_used":378,"timings":{"blocked":105,"dns":51,"connect":20,"send":0,"wait":164,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"tron-chk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-30","alert":"Sinkholed","trigger":"tron-chk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}