{"report_id":"250dcfff-c76e-4a74-bbc4-163e1633d943","version":6,"status":"done","tags":[],"date":"2026-05-10T23:45:51Z","url":{"schema":"http","addr":"variational-omniprotocol.xyz","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"172.67.200.129","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"title":"Variational Protocol","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"variational-omniprotocol.xyz","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"172.67.200.129","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-14T23:45:51Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"variational-omniprotocol.xyz","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-05-08","domain_rank":0,"first_seen":"2026-05-10T23:45:52.790275Z","last_seen":"2026-05-10T23:45:52.790275Z","alert_count":30,"request_count":30,"received_data":6811412,"sent_data":13912,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"02e42e26f2d4efab14905fbfb2978c10","sha1":"df88d0803437644f779e66b901f4fc17228b4c3f","sha256":"b8752c9eee3f04b9ff94552a2d0b7bd69e32ce7435ca3cbd1c7b42db66815f0d","sha512":"b10304fca1385233ff2a446d080a870cf86f68f5679f1b232b3701ae14eb78c7c2bd5a93ac2f74213f458d2f101dee0ec9f33dc32563cdcf1ac764579dec311e","ssdeep":"192:w8kdES6CMz8feKSXCcuUS6C95btjOSI3hrZUMKftymJHvCY:w0z8fm4pjk4","tlshash":"78d16d6d9f92063798abb5bd8f9bb080292284275909ed303d4cd142df8cd3997f6f94","size":6752,"data":"","first_seen":"2025-09-09T17:13:15.573075Z","last_seen":"2026-05-30T00:29:45.391982Z","times_seen":109,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","size":1239,"data":"","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T08:11:18.86432Z","times_seen":362883,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/chunk.24.4nrx9vup.js","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cb19e39967682dad07f1aabdef72fdb0","sha1":"e7f7a6c523d6ff1d22565fdf142590cf61c32e04","sha256":"7e5f85d7ca48d4ca3184ab70ecfad75aab5526ecd91ee866fc7e57ceabe26abd","sha512":"7ae7078e0cee67bbd17cdf2bc88aced65cf80232c71794de322e1da7005d53a5d517030037c42f9b5a3637a3bf6e1a116a22968d65c3717b7d73ae43cf2749a6","ssdeep":"1536:1PFWPFrcnNWb6XTMiS964V9dT2xIYw/63O:188NWWXTMiSgS36+","tlshash":"8da341c6995b90a58e5151ddc437ec09e0680a23cdadf2a3b92ceec2f45df62c44b53e","size":102742,"data":"","first_seen":"2026-05-10T23:45:57.277625Z","last_seen":"2026-05-10T23:47:57.092391Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2 HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://variational-omniprotocol.xyz/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 48432\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MAWr4dNB8zAToi6MrDuLOq7rniOWYwcgqDTQj1Vcy4K4VTv3mZ0cejgBV7l8aqNsTYYmTE8JQXZF1GPdoXy1iYUWWVIOfg4as4p2tC6gM2xjfVpnn3QR2YxbJkvu94fZMJEz%2BPcc9nF6jTDGpyKT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154e83e56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-07T08:09:16.321809Z","times_seen":63907,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/e028b891ffbf1f6e6f81f8fbffc4f788b36d9c33.webm","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:28.408Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /e028b891ffbf1f6e6f81f8fbffc4f788b36d9c33.webm HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: video/webm\r\ncontent-length: 148667\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-244bb\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-range: bytes 0-148666/148667\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VeWwNNUtAF2HGiejxsV4BFxEk2eS73rSQSTp8rgRSvKasnu%2BA0uWQzVv7D2zlDoZd4Xsi0l7e%2FNPwEXzELaWqG9W7oDvg6QuGYPJHbSmR5ZnVWedAV4wqnEbI2P0BhQwYv3QK%2B6ZQ6y%2BvLBwypxI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd15849a556c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":148667,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"2621a1ea9184dfff181e08f1d9ea9a57","sha1":"e028b891ffbf1f6e6f81f8fbffc4f788b36d9c33","sha256":"bf66d15a4e0d3c4f4820eeaee4b9fe420207ec54c18ade99f0af938fd47a6a02","sha512":"dbfa23f64d7ab7662f7b8cb2455f1af1da2c409519691648a139d93675c89848f4de04ae8140afac50e37ff5e5018fe25382c6df45feb5a167c16e4efd85befd","ssdeep":"3072:I13+bbksBFPmCRpUNMqAnDwRsIJ9/ShH4g0Om0/+RPNT85xPSGEEQ7aKB9C:1bbjRxUNNAnDwRT9/SHRmFPNgxKHEQ7M","tlshash":"43e312975289da3af8c8e7fa341030f277e0683830c0aad9d0daf5c36da61a54795d5f","first_seen":"2026-03-07T19:51:33.930126Z","last_seen":"2026-05-25T10:21:07.968908Z","times_seen":13,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":313,"receive":143,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-10T23:45:26.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=piS%2FIZkgPoz42T3nWMUGmJGMeZDav7ZWYdXwwtPJifQ63EoeyyJe1aMTL6Ng%2BRpMMFNGHrByOKZDjNnOO75ktAgTzEAZU%2BAQMtbd%2FQg16EvrmcQgzY4%2FR4YyBiOc5hlB08LL1oZdlNckxMe%2BA8jR\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9f9cd14f4d420b31-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":325484,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"6f52aeedcc0a38a27da9f5d53860fa49","sha1":"79dd0eedd5a86e74c7601cc1101907fbd2beb8d8","sha256":"3179efcfbb67d95d08a1b7210da781c0f4eda3589fb579ab829c83b81d47ee40","sha512":"14c4fc9d7e52fff67bb01a52d4ea5d4c4beb3fef70a86eecaad916bc00dc75f5fdc2451663198a641951a1d133a8902929393c69159cb7cb02868570478278ef","ssdeep":"1536:tMg7A8OkMPWojR69t4slT2J+2kO4ywVnrwu3ioRoNXzLGnyGuRSsquH+HPHxHAHt:V7A8nuSsb","tlshash":"0264646997f301e1688bd1ac5fb263052760d10bca06cd9d77ec63a0df4bc85ae9279c","first_seen":"2026-05-10T23:45:57.251787Z","last_seen":"2026-05-10T23:45:57.251787Z","times_seen":1,"resource_available":true,"data":null}},"time_used":409,"timings":{"blocked":74,"dns":53,"connect":1,"send":0,"wait":262,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/62gzAzvto.gif","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /62gzAzvto.gif HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-2b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G19H6%2BYyZQdxaz%2FXDs%2FNQ5u6erqDEL9VDDjzKEM2O00aqpZofKPoFuioeThZ4MwnKqEhAcyD9T0Z2h6HHkyoHh%2FdgmrMLVI%2FEy%2FoSFkZHTD3Jkkpj38yXxcqxTCOmfCL7%2B6r%2B2A75yU0CCNd4MZy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeb656c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"325472601571f31e1bf00674c368d335","sha1":"2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a","sha256":"b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b","sha512":"717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc","ssdeep":"","tlshash":"bf900003ea80c002c2a2c0300e0ccb802b88b0308a28030fb0fc3baeec3a3a20c23000","first_seen":"2023-04-05T06:29:39Z","last_seen":"2026-06-07T08:05:29.921315Z","times_seen":90025,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":177,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/8d4c0f51bfac9a7bcf0dcf869ae535a3362893a9.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.815Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /8d4c0f51bfac9a7bcf0dcf869ae535a3362893a9.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 50281\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-c469\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=J68ibhgsGvLRVBt16lq6%2F8Fae9W8%2F2WgXGCPsj5pI45H9roqus060BaRNHq88Yiw2zkFgkgQ5oUTAuOINqgxXCyvZpGzQS14FYQusJZOzQtbsAikyeJYccA4TE2RSakUMquFcZ2YUr4RU9v5rbu8\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154d82f56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":50281,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 776 x 680, 8-bit/color RGBA, non-interlaced","md5":"2afc57e3e672a793bc9e6a44a0968d05","sha1":"8d4c0f51bfac9a7bcf0dcf869ae535a3362893a9","sha256":"f7d8b35037b3cbd261dbd6e5d7548e05514d932bc2e9d9eead4d25bfb55bb1a1","sha512":"5cae024810fc61320273ce6dbd4720d70175c88042ebfddfacf4508c8fe8b5c545e5b10a8f9ba7eb02d4cd15ada2a4b3e919ff8f54f4107e792775fce77fdd64","ssdeep":"768:8nUjiYbzARNSo7JJ14KIZCv2pcSzT11i0yP8mxbsVcYw+s0mVRXHIAtZFx0zuoLC:8UtILdJpIZC+3zuBtFjoHwRXoNnCVBEA","tlshash":"0333e1a081915a7dd28027327a66183ebe711795721faf269140b8355ceffdbbf10c3a","first_seen":"2026-03-07T19:51:33.931182Z","last_seen":"2026-05-25T10:21:07.971666Z","times_seen":13,"resource_available":false,"data":null}},"time_used":281,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/b2d90f1a6b62e09b566549a4eccf50a63a45c795.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:28.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /b2d90f1a6b62e09b566549a4eccf50a63a45c795.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 830\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-33e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P29hUZ2cYDvZzsBGqQKxhCWglIMhvJYiuAACUDxojXYzPA9oYTPNPAiTd9B4Oe3xCDkG2XWrtw3zgPf8kIOwbaFobd082rFJQ3sSSwrNRHZweVMykQzHPQlPg36fSczeGZ2T1YsdDezM5HlttfEn\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd159ea6e56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":830,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced","md5":"a82f25ae013cee6a8136336e8306b31e","sha1":"b2d90f1a6b62e09b566549a4eccf50a63a45c795","sha256":"39357fe3d488f6d7c28c2682072770bd73a27d421f172266cc3120e445c916a6","sha512":"ddba920815af9712dd1c0a4a0222d8ed8163ad83fc969ca124e75ef5fcffbfc5753b4bffb9b01047ee1f20e2b737dbc3cad32267905b40807b0c60ebccd4291e","ssdeep":"","tlshash":"ee0186da0cb6886a4104a165391932bbf6fadfac815331c47564d40ca22fe40af83793","first_seen":"2026-03-07T19:51:33.920604Z","last_seen":"2026-05-25T10:21:07.973258Z","times_seen":13,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/css2.css","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.348Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /css2.css HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: W/\"69ff970a-1dcc\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F7B%2Fwp%2FJzUV2K3ss9yMLUGdGQnfmypiKRxbanRZub42BcwSUrLMV295MhdLU9JKz3xXpIOjxdcILFakeqPqVPW%2FGaSu87YXgOZsQvxIN3YoDm2L4l7OI8gFWh7uaLtBhnGxNsXFduCxIELY%2BpWca\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeb456c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7628,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a945690afba190bdf35bdbc8dca91152","sha1":"d93d79ba5c4ff541fb62d683c5d6b488b9f53ba8","sha256":"e3588f89e8f3d36d7befdcd1ad777d37963acce98132704f84f1d7ab2d5e1b4b","sha512":"72a22e14d311d595ee72e60b3ae2692c0cf6745594fab8f6f60c522f0f91a227d67e0dbbbc34e4fdfae78e152a29498981398ad2f56e511e7abe26664268a393","ssdeep":"192:9/NAPt34yaDD/OnIt3/ha8G/rKht3iIall/E5yt3RPaGc:JwSfyGKVm","tlshash":"ebf14490046b9400eb872cd277cf7f376d9da148a045c9795ffd1898acded2613a1b4d","first_seen":"2024-12-17T11:31:53.647668Z","last_seen":"2026-06-07T04:18:21.534016Z","times_seen":504,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/11b1ae68a48e3eb46c572c44f828ecfd13530f25.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.818Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /11b1ae68a48e3eb46c572c44f828ecfd13530f25.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 243478\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-3b716\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hooMUN4Y1G43b%2FeQQLuH80zuCbBZyOVtJNrOlL%2Ff4pwYy%2BOe%2BJtVzuPVBmkjsvUwM6GpciQ0ath5nUi8YXDZ9NuCVpdPA2JThpFYHAFazI09XUFs%2BT0XEItJCxKi%2Fn7m8gsq0XJEb2ZvZH%2BYLYMX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154d83356c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":243478,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2188 x 1104, 8-bit/color RGBA, non-interlaced","md5":"c361a09eb600caf79a2a4b54f16e9338","sha1":"11b1ae68a48e3eb46c572c44f828ecfd13530f25","sha256":"1617b604eed20bf4b7851665ed4cdfd0ee1f9f489caa584e6ab0477033604e32","sha512":"6654a087de90b19168e0400db6b5f8443c406826dd1b0a76e09d917d9a0e1604cc76015da5dd9a319d6e087ac2001edcdd3ac81dd7d3d82a9b6ca99f656ef2c7","ssdeep":"3072:uMwnF0qaduY5rp3t353DZC33oKCvJkDdkG/c83xKmvzGXHikR2TTtkpCs7GqHJ1V:uMwFHUgnolkO2cIzqHi107GEJ1cAaIWU","tlshash":"cf347a86cb4569bbb6890041b75378d39aa12d773161ce4a0bd7b02f6b4bfb4ec70c91","first_seen":"2026-05-10T23:45:57.257179Z","last_seen":"2026-05-10T23:47:57.106353Z","times_seen":2,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":103,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2 HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://variational-omniprotocol.xyz/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 48432\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GlcDishyHaJ%2FEG6Z5A4UJXojNeiIUnOwR%2Fd%2F2MjIu5pvfKrVty43OIQhqt2oZ7AaOa10eTKDstQg0JKygBqg1qJ%2B9ogmrv7J%2BUUy1jAOH6qL7lLTUFdfbrobQM1ShYepRofKoVXFxuSC1%2FGY%2BuPI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd155286456c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-07T08:09:16.321809Z","times_seen":63907,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":63,"receive":43,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/61fdd268a7b95706c26ba67b0e7831366cf665c4.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /61fdd268a7b95706c26ba67b0e7831366cf665c4.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 2297\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-8f9\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=h0uXUNNcG%2FL0mS05AUGugqkVgAndPYzbiCxB63h1p6dUPvm7YySkF5BQSDGb0KsC7WZAVYLoS%2FXaMnUQ3f8ZpLDJqbmGR8hN5iEsbxrdjiojGVYU8xFT57hWVyKtHYuacSJsWv%2FmxTYKokrA1zE%2B\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeb856c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2297,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 82 x 78, 8-bit/color RGBA, non-interlaced","md5":"cfc3f805b1b7bfef518b54617dbdca36","sha1":"61fdd268a7b95706c26ba67b0e7831366cf665c4","sha256":"39f32bc8d98f625908b59a56f97fed24ccead48af0466cfa3be6da0de022ada3","sha512":"be675cdcd973541025d053feeaaef97580f8f65d7eb45a703b887cccfc06c128ff01b1276c5d4a6166d47efdddbf54ae2d8a997c3e75849800148a6ec5fe93a6","ssdeep":"","tlshash":"ee41c6952df079e1d0d529b10dc2420a49bb8d87388de58bb3ec1d932f9d950925a7cd","first_seen":"2026-04-17T17:57:05.286395Z","last_seen":"2026-06-01T18:46:57.594868Z","times_seen":27,"resource_available":false,"data":null}},"time_used":194,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/06819da46a119a541dbda36e9a9eb47a68ee89a4.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.357Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /06819da46a119a541dbda36e9a9eb47a68ee89a4.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 142171\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-22b5b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=28CUMjm1XnPwhaBT7jjESPOUHnCZTWWb1E52S4agAheWTG0D9yG342Ez1LpAv5x5RO%2FI2zp%2FR27N5fxsTd0FsXPloruYu3cmxtymjj%2F0n5FXFn2GVEQa1wlZytIicE9tqxnN4Eq3BsTeG2VVIvkJ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeba56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":142171,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 776, 8-bit/color RGBA, non-interlaced","md5":"22b70ab1a57849b2d9229ea5f20e55c7","sha1":"06819da46a119a541dbda36e9a9eb47a68ee89a4","sha256":"b66c86f3a8fc126a563f582f85ec7e2bc36a4608d33b81e0777401114eed2818","sha512":"925f53ac647440f879a67709f1611dbc4e1b4173be31cee7014417417ed6225bba69c61862d6cd2a48ef04a2bf6abb6c723cfd387af6a975c681c512aab80c85","ssdeep":"3072:UOrY2fP7LgFIvLtU3JffWuVpnLQhvqTjv+6i++iJWUnhJIJ/d0RuYAS:UOrTHgoK38uVVLDn+nwnnIddrS","tlshash":"9dd3132ee8c062716d0d1b7e84c97c73050aedd7636aef3d4e3054eab9348923ba5547","first_seen":"2026-04-17T17:57:05.28014Z","last_seen":"2026-06-01T18:46:57.590756Z","times_seen":26,"resource_available":false,"data":null}},"time_used":338,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":222,"receive":116,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/94c0bda75bc6dec0a68c95e4794d6f70c4bead0f.jpg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /94c0bda75bc6dec0a68c95e4794d6f70c4bead0f.jpg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21747\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-54f3\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XTVJ7%2BLTlfxz%2Ff5P%2BSaRSw9gCReA99Vqv5Z5vZfdyboRmPfaIRjMhFSxZUe5gk3pkmtyN7NkmPNjPgoLsXI1dAEKFU5wjd5NeMsDEtOPJq6lfA3%2BUiOE%2FcidU2MiL8vW0Yot8upjKFRqLGdeJQOP\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154c82656c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":21747,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: \"Lavc57.89.100\", baseline, precision 8, 1026x720, components 3","md5":"db2a235b3ea579cf0689004c88b32d78","sha1":"94c0bda75bc6dec0a68c95e4794d6f70c4bead0f","sha256":"4531a373fba5a61dfe0e298044792b942fe62eb91fdbbd564c951c73234a787f","sha512":"2615eedff58eac0cccc4570e000de0e51c0cf66a14ffa510f28d9e00ffa3b9d2c1644030c2cd247920b37a7e339740946767d1cfea1246f12fdf7705895a4a41","ssdeep":"384:wKgMrqTaB3hLPkLFkki1izNa6dD/Up300gO13bzs+EsKp5uu:XgMryaB3hQk3aXxUp3TJHs+EsI5uu","tlshash":"50a218139c29ab83a435c7f8be039dec9e16771ce99539aa2563ced73c203225c5d06d","first_seen":"2026-03-07T19:51:33.926855Z","last_seen":"2026-05-25T10:21:07.97073Z","times_seen":13,"resource_available":false,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":548,"receive":40,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/bc4a7457b19f1d2a97620ebf86180acfef744a2b.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /bc4a7457b19f1d2a97620ebf86180acfef744a2b.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 4500\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-1194\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cwGIqjzeJ1SCHGzMex1LkvYS7CpNX2WuUGxKVy44J6RGV4nnG2rz00Grp9dwZ%2BP%2F3xlgeZW3HTtEjI8U1jIc0AkyavO3q9ZFsut%2BEow9yJ5lcHzOkjyGTq1un2tFcU9C1%2FnWzjD67dbcwdJDSBN4\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd155285f56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4500,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 207 x 207, 8-bit/color RGBA, non-interlaced","md5":"68f018443c3a3bdb29b876946fbf45e0","sha1":"bc4a7457b19f1d2a97620ebf86180acfef744a2b","sha256":"08dc800dba1747f3f184502bb9f69aeb7b3d431e0218cb558d4a0e11fd8c1c68","sha512":"73e03910bdc9e2e9cc6fb6846b61efde781dbfa6cd0a1b330e77f197519ac39a3d0d420ebb275e3a8e0b0f0672a3b44dae59b75aa06fc1cc10406b4d12a8c699","ssdeep":"96:CSkzNmlauwYCOwEV30+G3UAgu0IX2e6EnGsAcjDlCjXbMQCGm0g0Hy7qNtVqA:CSkzru7aGhgJJGyVI9CU7VqA","tlshash":"d0916cbcb70ad07ffb161e791edea22d866f93a544b34908b4318494a030e5a60e53b8","first_seen":"2026-05-10T23:45:57.266924Z","last_seen":"2026-05-10T23:47:57.086645Z","times_seen":2,"resource_available":false,"data":null}},"time_used":413,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":413,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/aa0a3d45e0d2de903f86c992db1b84dd46bdb8e1.mp4","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.911Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /aa0a3d45e0d2de903f86c992db1b84dd46bdb8e1.mp4 HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 118286\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-1ce0e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-range: bytes 0-118285/118286\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4JufkVnVdX2Uw3QXKDgt%2BTECbEVuh6gQaEFfVQ0%2Bt1bH0V7ZL%2FreSPhuLZfCBOkFTOW4xyvIMHgB7my8N4Q8p0SFeZHmwbCXMQ4VoUgSCM4XhVuRDNSqr34tHBBQDu%2BaAikGYL5yPrLqbboRquTj\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd155687a56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":118286,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"e5dd99dafda3bb99fe3bae8faff0c45f","sha1":"aa0a3d45e0d2de903f86c992db1b84dd46bdb8e1","sha256":"32c2344fa11dede3f9103625efdde40274769d7f7d4fee3401f9591e3d6b0ceb","sha512":"dbab48abcedb946af804053de3ed999bcd124ffd7f93c97b2621d96c35643a4a878444d1227a724de69bd2901e58e0b119217eb8ff1b0f7f44d0ee37cb63f4a1","ssdeep":"3072:2UmKpWw25uzqpHJXfeKNGuZwoYP/biQvqBDbP0Fvz0su:2UmkJ20mJJXfeWGuZwZexPM50su","tlshash":"40c312e08bfdceaae9b36439ddcba94217680395465132af4d8f502ca513e8cfc07957","first_seen":"2026-03-07T19:51:33.923389Z","last_seen":"2026-05-25T10:21:07.97426Z","times_seen":15,"resource_available":false,"data":null}},"time_used":366,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":61,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/9853022a48688d2a640520f88b85ed05729ae2a3.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.935Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /9853022a48688d2a640520f88b85ed05729ae2a3.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YQMRKHNCqyy74XN2PlHLsUa%2FVRUjoPKysrl5CzoirSw6TQtIW%2FSxaqwFk06iIWcaWOUwxLXabg8rjm0vz8GSBbmUM8NoFiT1ZqsTpzJb4P%2BlxFXg%2FK0u7LyHsNci2AZwoAcEQCEkNSYBrQiloMMi\"}]}\r\netag: W/\"69ff970a-319d\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155889a56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12701,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8560b97034b91e018e564fe0346c5704","sha1":"9853022a48688d2a640520f88b85ed05729ae2a3","sha256":"9cd21f71dd9fa45263a413008df9f9257d9bd763328066adbc737d031b69ff2d","sha512":"fd36c559648a99384686bf951a3ba62404a6f15ea9450742e23bf6b4ffcc98d6b7c1c910b627ea95d2103dcbe2d23612c275d6b8856d2bf5ff52397732f2979b","ssdeep":"96:ibSli5DIxEoYc2dyzg1Z+w+VoAHFY/LNZD9XUIzV68dG:ibSghIW9dT1Z+YAHQx9XUCQ8I","tlshash":"d842b54c23481879f232020ee715f278296e55e163962a44cfa236fe7d58a5f7c3b6cd","first_seen":"2026-03-07T19:51:33.929365Z","last_seen":"2026-05-25T10:21:07.972761Z","times_seen":13,"resource_available":false,"data":null}},"time_used":191,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":190,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/24a16cebd7e30f6458aabc37a83b37cceeeabd4e.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.356Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /24a16cebd7e30f6458aabc37a83b37cceeeabd4e.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 2388\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-954\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9xr5H8WN1JWaCV%2Bt4s4d6WcFVsCF7Bfy8YmnTDAD6lg0oCFetGWrwv9sRdE%2FNmtNBaxo92OXmTbvmU6l6TvGPX6vW9en5hMECbJqwEIruS2SLFYPwZZ0nQznfFr1khwak7Xh5La4FqsZElg%2Bs6vl\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeb956c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2388,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 78 x 68, 8-bit/color RGBA, non-interlaced","md5":"a2baae138966c94954ebc32cb9e8e0a1","sha1":"24a16cebd7e30f6458aabc37a83b37cceeeabd4e","sha256":"a9b23000d64c8f88f3b58854ab92bfc3e1bd01c3972b75f6f22b98d9a356584e","sha512":"3dfa8b76995d907be13b0091cf2093d2ebb54ac9fb67aa828d3f5638610c77ac3d04e54c01093830738d9d9ea3e4349af52462399fdc447410a1ffa03d7ebca6","ssdeep":"","tlshash":"be41ea991ef1a5b2e1d426b14dc6424609b38a876c0eb0c37bdd1d532fcec2421ab7cd","first_seen":"2026-04-17T17:57:05.279222Z","last_seen":"2026-06-01T18:46:57.585991Z","times_seen":27,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":175,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.359Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/javascript\r\nexpires: Tue, 12 May 2026 23:45:27 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zGuxKr7KvDelBvjnPdo6eIbhqZ7VGqVHYwjafbdYVjbBO8swxTAlX7xgQw87c0waUIOIhOueWlFlGPO56Y%2Fro9Q%2F76LvZ1xjeWiUFRHtGk6R%2Fk%2FZsEmhT69oyLyPvO8NA7E7Fw%2BPCZzlf6uvWtCx\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9f9cd151eebb56c3-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-06-07T08:11:18.86432Z","times_seen":362883,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/92e33b6866b9acd417afa9dab36a5be4a844e7bc.avif","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /92e33b6866b9acd417afa9dab36a5be4a844e7bc.avif HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://variational-omniprotocol.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 50819\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-c683\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ynq0w9v0e43oScXcTYGvG0kXw06BAGcvO1bS2Qe6RK19zUDIT35y%2B5vtNQw6H8gwS3%2FxeZ41D5caOTlp79IixspCvXaH0W%2Bg%2F5GRXEaH91tonc7Jazk%2BBeQrKC5vT4QzNpQ1I6yRLKvmAH3F3uAS\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154c82556c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":50819,"size_decoded":0,"mime_type":"application/octet-stream","magic":"ISO Media, AVIF Image","md5":"625d9808323ece2d748e7571b1b45571","sha1":"92e33b6866b9acd417afa9dab36a5be4a844e7bc","sha256":"e302c1d8abb055ba3ea3ffd63ba3ae9f42e91dc27e0137dc200a965d58c4fc6a","sha512":"b48cab7802330f3762243534ccbfbd4a6ff250ae43bc995754cc914643f493489bdff2da0ad74ffb00dbaad630c2e0d92d8b27e12eac505617a7f4e64e0d39df","ssdeep":"1536:VfZp4PSKqwfbDg7BFpEusiDzCisQKNuGH/:VnQoBFpIqzEQUDH/","tlshash":"7333f2bfd2958ccbfcc548632aeb1a54055ce2605a6ab1327228a443cd1cb55fc5fe6c","first_seen":"2026-03-07T19:51:33.925915Z","last_seen":"2026-05-25T10:21:07.981754Z","times_seen":13,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":221,"receive":64,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/501adc5282c70f806cf41c10a42bb6b784af6f4b.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.932Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /501adc5282c70f806cf41c10a42bb6b784af6f4b.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xyTWla%2B3uqOkhHTdsuNBL2%2FMmC0RNI4OW6FTQJ9gk8k7yXNcFSklJwCe64weyQrRv%2F85FZzDPK6nQ9ryfrAXDLtE42n%2FONy0cGwUHtZurnbfe12HOYUFvJVe579JctKC9FdmHqgps8fBIuGXlxqc\"}]}\r\netag: W/\"69ff970a-f5\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155889456c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":245,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a67fe01ac32d35ace81fe72ba8e8f51c","sha1":"501adc5282c70f806cf41c10a42bb6b784af6f4b","sha256":"3f440267bc4e6877ec5efbab4cbd023cde50f8c86c70383d5e577c18e848f630","sha512":"6e9a127503383b28dc866f185a2b6db6e6a12134f7e54c00aa85804a9d20b7985439c3ac10fe3d506ee88d74fb64e4a6b2d3233a9efdc28182ed957911cf91fb","ssdeep":"","tlshash":"38d0a5d761dcc908c214971e477456f56bf1a0d14f69049ecf80355d74445d76c3e1dd","first_seen":"2026-03-07T19:51:33.911885Z","last_seen":"2026-05-25T10:21:07.984132Z","times_seen":13,"resource_available":false,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":343,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2 HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://variational-omniprotocol.xyz/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 48432\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0Jb8Z%2BaC%2BLmTwm8vujW6k2E%2F5P%2BdFHCPWde8WjFufu%2FGQae0S24DLTpt5pc97yIejUbm24djJAem4XrSzi%2BN%2BqvdnocJsMXVA%2F89BoPVMJ4f3rE8hqXMSCdWsITF6dH%2FcZw9HAh%2BLCdBSFj%2FGQrG\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154e83d56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-07T08:09:16.321809Z","times_seen":63907,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /1dc044f4824fd5af6bfed67fee48be70fa069f3f.woff2 HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://variational-omniprotocol.xyz/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 48432\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ip70yyZRurDr5x1%2FqeD8A%2FEouiJJOrbq2G%2B5bFkVx%2FEgfS%2BRUKOrbJn%2FOIhnPK9oTMJRyF0O6YlQIcIH6EweF7MMIi282UdjCK1qAwtXVN0osvb2f1fNHvx7mBSizeqbO9abi0GRoYBzBpLiaMHZ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd154e84056c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"application/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-07T08:09:16.321809Z","times_seen":63907,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":46,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/8ae48018a61f53e373241d107fe320c8b41a8b28.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.922Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /8ae48018a61f53e373241d107fe320c8b41a8b28.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 435\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-1b3\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NgNYucm68QhmdpM6NBje4gCin%2Fl2Q2htHmMKrPJeEIHlFeOaIFXvJBw8SgQ5s7a%2FR%2FB%2FVpHWujwFYHdNDJJXOFaMShm%2Fywze18WYDgurbFK7%2FUbPYuCUs7ZcwH7pNDslx21duaZt7WqbQ9nn8gby\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd155788956c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":435,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 13, 8-bit/color RGBA, non-interlaced","md5":"dc6a541b9bc6c5849e1f40f112e1a8bd","sha1":"8ae48018a61f53e373241d107fe320c8b41a8b28","sha256":"4acf75a54085c79cba4ffe428123651e655b14cf39b1d3b09ecd33dc74f39d80","sha512":"55af0c48722d35f0c755a9313d1499a3206e31831f01c789a17c582aba73e35a998a218071128cec368696301a11e845992dab7027386b78864d4a093716c01e","ssdeep":"","tlshash":"72e05cda135449a8a30de42b38172ab1982b3d1f22139c29f996946a95da8c8400595e","first_seen":"2026-03-07T19:51:33.933081Z","last_seen":"2026-05-25T10:21:07.974779Z","times_seen":13,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/f635573a6c34aa54dadeed93f752d6979066ef28.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.927Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /f635573a6c34aa54dadeed93f752d6979066ef28.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Fmzbh%2F%2BA4S%2FU1Dvpu2AufV1MZaOiScPLlQlHU2UBn4skSPKTlglliVjNJLHxhjj4dmKdrg4HjDdXudHEeT1bv0vmcgfrBPl8qtOzVq%2Fl2oP7kxreYge2C3J5MAaURVpzn%2BysiFNwzA3KJ0O1p7c2\"}]}\r\netag: W/\"69ff970a-135\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155788f56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":309,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"79552b2e79242e3567d42d924d70c663","sha1":"f635573a6c34aa54dadeed93f752d6979066ef28","sha256":"7d0e6299b94359e2b33a11ab669e3b3d93a4c08e9b92eab7b262857c7993aa4c","sha512":"5af4b064e1df71760818cf1eb8f5ebac2a3d1642d8f5c0f695e23738385f551236d15fac6c1e683894a6325bc23b09e23f9353f86fe54939377716b188af0369","ssdeep":"","tlshash":"b0e08676a009c1d1682b80755b68643062ad89e08acb75ea59c26c1578e90df992a4bc","first_seen":"2026-03-07T19:51:33.924268Z","last_seen":"2026-05-25T10:21:07.975299Z","times_seen":13,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/abc8eea88ba48921e009b659b6c5338cd659cce6.png","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.936Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /abc8eea88ba48921e009b659b6c5338cd659cce6.png HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/png\r\ncontent-length: 48052\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: \"69ff970a-bbb4\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FCS9h2MdC7tjKbkFjBHRicslVQhFgpnmfir7f5YLx5UHFPgdOfyNKS1S7vV1M01sTg%2BHqZoJ6YuGcgXYaIaa1dcxZ2CqaZHKil8w9ta%2Be846KGQ7cj%2F70lv1EVS%2FoJTn5ED1SdmrkBOdM46d8g9Q\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd155889b56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48052,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1138 x 514, 8-bit/color RGBA, non-interlaced","md5":"e0de5a44424fcd6d97d6bd2d9d769237","sha1":"abc8eea88ba48921e009b659b6c5338cd659cce6","sha256":"753e8ac324a8261edc44317b12e71bf15630d2f3df21dd7ba7295329c86228b5","sha512":"78c029c217c102240d5ce4280719b6afcee45e542a19c14e996a6fee6c86382a60ae4e8fb1b569a8c145b75244a683ea223fbc6f59a474e41e345b25ee8a3be8","ssdeep":"768:lIDp52O5TXHMRAkzSF3jxGQ1EEKXgEKzaEDVwDjzYo/cML5H9FZ22anrlU4Z:lIDpcuARAkzShNGQ1EfgE4DVwDj0o/R0","tlshash":"9423f1b829fb29b4e74984f80471cd408aa8c7130e571a9b8db7f71d0f4bd5e6d49c09","first_seen":"2026-05-10T23:45:57.274609Z","last_seen":"2026-05-10T23:47:57.101643Z","times_seen":2,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":221,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/6c0f249034e66dcf3aa5145ee2d649f8217e799c.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /6c0f249034e66dcf3aa5145ee2d649f8217e799c.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NROEB35OpBS2t3%2FinmE2dXw3dva%2B49jDCKVkF3zu9EB6D60QHsiPB3KkrwoXkwOMMGPEVdXPMWt297pK0POwKpm2fwnJS5BK6yelpbg3rMNt6lYgz1TxS2LlcWkGK6PGlUbZ2fyXd234nwyXs7fs\"}]}\r\netag: W/\"69ff970a-11f9\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155788856c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4601,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9b51eb42bba7bd793b1e6ebd30e776b9","sha1":"6c0f249034e66dcf3aa5145ee2d649f8217e799c","sha256":"d15ae7d94685183c8f929855d9dfff68cc35a9379568bde25ae8bbc1ac912e12","sha512":"bc997c7862f53da78abaf7a7942920f235b14494408973a6ab0b21b3d379d4ac16b7f2233486e94ee97d1b9fbde20d0f2c6919248579af5ea43a9b030ace9f28","ssdeep":"96:JgIg0YtfhPeYn+THnUeH/uErh+5zRrlZ5Wh/XsBTg3K6tqAu:W1BhWYs0b5NRZ5WhSku","tlshash":"ce9146d4216962f0ea07ebf98e16f835698738fa5eb0c3f94110bd87ad6656a4c4ccc0","first_seen":"2026-03-07T19:51:33.932077Z","last_seen":"2026-05-25T10:21:07.983165Z","times_seen":15,"resource_available":false,"data":null}},"time_used":407,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":407,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/5abc9a6211073a3b882c227b8e5a790df66edd4f.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /5abc9a6211073a3b882c227b8e5a790df66edd4f.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=t25XFpZ0Zgkwmewpnxgix0hiup16tss1BhEaZ6atmJXqWieemV7yVLrj%2B79ialOfSqMeJvRZ5N1DW95I%2FLjycTdYF9uUXIQp8obQ9RtlGiHmPYAoOTUameUjFU4z73Z%2FxKhKVcIbAUp%2BtNhs%2FoAI\"}]}\r\netag: W/\"69ff970a-104\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155788d56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":260,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2e713ec82fd7abf426e905d8036d4416","sha1":"5abc9a6211073a3b882c227b8e5a790df66edd4f","sha256":"2394b41e5604f3c00207fc9e665cabc37385855b6f50d20e4ac5d20dad1ecee0","sha512":"e0bebbdd833a0a999a0546c6c820aa7dfabb104dec526a06d81192da367112b8c802fd9707df884b7136ceafab737287842774310540e8d64acd0e5d9a96ab20","ssdeep":"","tlshash":"bdd095b6789df9048440a711d65cf07960b3b0d3011800d5fd803531b864dd75c127fc","first_seen":"2026-03-07T19:51:33.928603Z","last_seen":"2026-05-25T10:21:07.986202Z","times_seen":13,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/chunk.24.4nrx9vup.js","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.351Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /chunk.24.4nrx9vup.js HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:27 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\netag: W/\"69ff970a-19156\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oZsGYC9flfVaul%2FIKUFfMw6xlIXwtAwoGnCblnY9aM2XdGS6nYmz0ZZr2BFYi36sC5xe%2F2gXotWL%2FOFkL9xxetns13ZWnyOpjj7WcFwzXXMQT0zllTBpfuXfwRIySlkrwNJSYWOR5utwkTUaWg%2F2\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9f9cd151eeb556c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102742,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"cb19e39967682dad07f1aabdef72fdb0","sha1":"e7f7a6c523d6ff1d22565fdf142590cf61c32e04","sha256":"7e5f85d7ca48d4ca3184ab70ecfad75aab5526ecd91ee866fc7e57ceabe26abd","sha512":"7ae7078e0cee67bbd17cdf2bc88aced65cf80232c71794de322e1da7005d53a5d517030037c42f9b5a3637a3bf6e1a116a22968d65c3717b7d73ae43cf2749a6","ssdeep":"1536:1PFWPFrcnNWb6XTMiS964V9dT2xIYw/63O:188NWWXTMiSgS36+","tlshash":"8da341c6995b90a58e5151ddc437ec09e0680a23cdadf2a3b92ceec2f45df62c44b53e","first_seen":"2026-05-10T23:45:57.277625Z","last_seen":"2026-05-10T23:47:57.092391Z","times_seen":2,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":247,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/b036f239ef53982ac024e7b7e68436ea6f9aad46.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.924Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /b036f239ef53982ac024e7b7e68436ea6f9aad46.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DCrGG5CjDe6rZzQh%2B4MVrIaenI%2BIvCv1uO%2FM6tJyCtpUMeJStX4zVYY3%2F%2FaDHXg8GxXUWlq5vDuIDAtlfqwU%2FwGKmL940mAr5RBDIi%2BzUpRO7e4ZKTmQyVjnhTtFomhEbVcJdc2oDXAwgCt3Bzrx\"}]}\r\netag: W/\"69ff970a-11a\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155788c56c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":282,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ad18b206821c55f1da0e4b5b0880d516","sha1":"b036f239ef53982ac024e7b7e68436ea6f9aad46","sha256":"f7ff2e0b96c9269b92ed9103a12338dbd271059b0543f2af6ec4080cbbacf1f2","sha512":"dc059fb2f38e7a92406c9a13129eb541adb2eab7e73f60ba99657a0dcad16bfb9d58e92b3e6ebf98a2872b6f8e168822b7b5e72e511080a5604d61f823317f7e","ssdeep":"","tlshash":"b2d0c2ee233c9c2cf0a64614eb2532a9882550824a891a48d911b531909095a6c3bff8","first_seen":"2026-03-07T19:51:33.927729Z","last_seen":"2026-05-25T10:21:07.972254Z","times_seen":13,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/e2977347d82a387666ad730ef8e2efc4a763d507.svg","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.933Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"GET /e2977347d82a387666ad730ef8e2efc4a763d507.svg HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 09 May 2026 20:20:26 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MLFHXwBJxpxuGHSwQWMrKIlFkjhhXZLql6oK%2FfhdFcODfvozpiqtt%2FqoUZ9LHjD3QUU9A7wJml5n4axJ8HRGXABNIo6OlfdyNjpvVHaaHwmowQy%2F6zO7MVPR4WKSGkvxXgKhvILO9xxAP4YZEJU3\"}]}\r\netag: W/\"69ff970a-12a\"\r\ncontent-encoding: br\r\ncf-ray: 9f9cd155889956c3-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":298,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cd8b72f11b95dcea3e2b409ebae6bfc6","sha1":"e2977347d82a387666ad730ef8e2efc4a763d507","sha256":"f38153c6e7a15c1f30e5cbd184979a88ff2f69f85182820ea66f805bbe38242b","sha512":"a3c39206e26b09396e6f33e27425909ebefcc0d2ed44662c3b0faf7706fccfc6be438817e2c5d2a5dddb19dad37789c4b8c49fd230ce3e90528a76704c01aec1","ssdeep":"","tlshash":"f8e0c2740348c83cb1254926efebbd3cb0a514624c4a21bdc8b22232661594a693f1e8","first_seen":"2026-05-10T23:45:57.279324Z","last_seen":"2026-05-25T10:21:07.986737Z","times_seen":3,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"variational-omniprotocol.xyz/secureproxy?e=jscdn/getFile","fqdn":"variational-omniprotocol.xyz","domain":"variational-omniprotocol.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://variational-omniprotocol.xyz/","date":"2026-05-10T23:45:27.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"variational-omniprotocol.xyz","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 May 2026 19:46:48 GMT","end":"Fri, 07 Aug 2026 19:46:47 GMT"},"fingerprint":{"sha1":"F8:E9:AC:60:13:0F:8D:80:CE:ED:47:3E:1F:95:3E:FE:A1:8A:1C:19","sha256":"52:55:51:E4:56:70:C2:DF:D4:79:20:58:0B:E8:32:91:C4:58:6B:6B:28:50:F1:36:87:4D:23:8A:4E:8C:24:0C"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: variational-omniprotocol.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://variational-omniprotocol.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"d8hgxyma3kodjr2m9k3h\"}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 May 2026 23:45:28 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vhyAzDVmj%2BDuARObx3P0KVxy0ZPtmHPv9zNu%2BZvzCdIBv7i2lpN8i7aO%2FIyADrfv1t3WqaUzLkVt%2FmZBqJdVB4D1U5NzEO1iE0kjCRp2QNwezBsDFqkopdk18A%2Fn4McohyS2yD4%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\npriority: u=4,i=?0\r\ncf-ray: 9f9cd155e8c256c3-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5299485,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d0592a8cf53fa9c3532783bb7ca35bd2","sha1":"f7c7a721d866df0c92eeacb7b09c579c39408b0f","sha256":"9c51b51e3a82c71316c2c27dd3afdb187a9880d87ea950494cfa5c24e6110ab0","sha512":"988b9c750a4006373c0aa90fc016101c97f53af4664d99a589eeb64742dd5ea9fc4a9eea8d0ff8e8dc3624f7059bce5fbcbcb76e856d79bbd5af0faf5e965cf2","ssdeep":"24576:FSzN3EJ6pg1ZLnG3YVvvBegq36llXGvdq79mGQvwwPTJuSCMrHbY:LYg1ZLaGvJLtlByq79Buww7YSc","tlshash":"8f2513c690a290e13526c81995c63cc44ddf40bebed44a793668eec018d79abd6fcfe1","first_seen":"2026-05-10T23:45:57.280267Z","last_seen":"2026-05-10T23:47:57.119065Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":474,"receive":726,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-10","alert":"Sinkholed","trigger":"variational-omniprotocol.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}