{"report_id":"3260612b-52f6-4e99-97ef-3db2798c65e5","version":0,"status":"done","tags":[],"date":"2026-06-20T07:47:44Z","url":{"schema":"http","addr":"sample-painting.com/two.html","fqdn":"sample-painting.com","domain":"sample-painting.com","tld":"com"},"ip":{"addr":"192.185.103.89","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"sample-painting.com/two.html","fqdn":"sample-painting.com","domain":"sample-painting.com","tld":"com"},"title":"Bitvavo","dom":{"size":39238,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1083)","md5":"a79efd75763a0b49e44058908799ae08","sha1":"e15c6287d3ba758dba92d113d00862ca14085242","sha256":"77b1cc487e662337bad6f7f1814e05373af784c16f58662c8e9768c265500b94","sha512":"6315ed4c783908a2e558ceb7d63fb16331604afd2a9bde8e23aa43c803049d33ad9c040ff3d53d41ede33b2deaefe7a5a7710967b3b0f40345d097d3402c7e71","ssdeep":"384:uZR1xWay3oMH/5ScZHn1X5wQjb/TTMl6KmM1:uZvxWay3oMH/5SQHn1X6QjTMUM1","tlshash":"1003b713b5f2a42b2903467827f6a91b3b79d143c906df993edc96804fc6ed50eb3285","dom_hash":"domhash8868630fbe188f7fc4c20fcd4acc0890","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"sample-painting.com/two.html","fqdn":"sample-painting.com","domain":"sample-painting.com","tld":"com"},"ip":{"addr":"192.185.103.89","port":0,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-25T07:47:44Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"sample-painting.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-06-14T22:19:01.724334Z","alert_count":0,"request_count":2,"received_data":98690,"sent_data":1156,"comment":"","tags":null,"fingerprints":null},{"fqdn":"account.bitvavo.com","ip":{"addr":"104.18.39.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-04-20","domain_rank":247928,"first_seen":"2020-01-28T13:31:50Z","last_seen":"2026-06-20T02:13:17.5336Z","alert_count":0,"request_count":2,"received_data":21648,"sent_data":1459,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Onfido","description":"Onfido is a technology company that helps businesses verify people's identities using a photo-based identity document, a selfie and artificial intelligence algorithms.","website":"https://onfido.com","common_platform_enumeration":"","icon":"Onfido.svg","categories":["Security","Authentication"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"sample-painting.com","ip":{"addr":"192.185.103.89","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"domain_registered":"2019-09-11","domain_rank":0,"first_seen":"2026-06-20T02:13:16.865212Z","last_seen":"2026-06-20T02:13:16.865212Z","alert_count":1,"request_count":1,"received_data":40213,"sent_data":496,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-06-14T22:22:05.140579Z","alert_count":0,"request_count":1,"received_data":8265,"sent_data":531,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.auth0.com","ip":{"addr":"65.9.68.34","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":38124,"first_seen":"2017-04-20T19:55:03Z","last_seen":"2026-06-19T09:14:30.166294Z","alert_count":0,"request_count":1,"received_data":278148,"sent_data":526,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"sample-painting.com/two.html","fqdn":"sample-painting.com","domain":"sample-painting.com","tld":"com"},"ip":{"addr":"192.185.103.89","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0411ade9c84998c085d0d19c2abdab34","sha1":"8970e9902ed5fa92ef96354c2d65d4f21b6063d7","sha256":"7c5ee661daa0f42448de4fe5cc29312dc42d0c1fb8d9223d52538f21579f1e68","sha512":"368ec8b68450468bf2f460bde7a670b91b0c0597ff23ca24b60e7819bb429e2adeeca18082c9a0606a9f91ceb43f50caa8924c070d0dd36c82801f304f47a3dc","ssdeep":"","tlshash":"93f02b1eb5713432857333756adf994a762321a33002c94d3f5c56810f515011bb1e9c","size":650,"data":"","first_seen":"2026-06-20T02:13:23.482403Z","last_seen":"2026-06-22T01:58:40.459807Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.194Z","timestamp":1781941642194,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://sample-painting.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 194369\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49345,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-22T14:35:35.984808Z","times_seen":216357,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":3,"connect":32,"send":0,"wait":17,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.196Z","timestamp":1781941642196,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:18 GMT","end":"Mon, 17 Aug 2026 08:38:17 GMT"},"fingerprint":{"sha1":"C4:91:D1:0E:C2:A8:68:24:7B:00:2B:4A:EB:42:41:E0:29:E2:4E:A0","sha256":"68:29:56:08:39:D8:99:7B:20:CC:14:D3:4F:4D:D2:55:68:A6:27:DC:52:E9:7B:CF:CE:6B:D3:13:BC:97:65:C1"}}},"request":{"raw":"GET /s/inter/v20/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: https://sample-painting.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 48532\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 18 Jun 2026 01:47:53 GMT\r\nexpires: Fri, 18 Jun 2027 01:47:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 194369\r\nlast-modified: Tue, 09 Sep 2025 18:33:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":48532,"size_decoded":49345,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48532, version 1.0","md5":"225835e6e0496c54dc2aca9f3d533892","sha1":"942ef5298bbe74bfe44e445def5f2bfc94027fa8","sha256":"acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087","sha512":"ea2ff96ed5ac965c1846b4b33990beab3d4ced66806fa44321f5dd59d9a29a8ae1a67a5816d40165af8a896677b6a24bb74ea6db53cd5e686080165db9fd62c2","ssdeep":"768:b9tYsJ6BxVEpu8sqEkvfXRGEBqH7KxpxA07hQv2bSokjQx2AOWUVOv7UeFHOpIsR:LsEcy7fXRGqqHmr7qv32UC7UetOGLkF","tlshash":"03230178cf9f85b3d33b153afaf4d20562a9067de76c4a803831051a2a55770b89dc0e","first_seen":"2025-05-29T17:27:56.345238Z","last_seen":"2026-06-22T14:35:35.984808Z","times_seen":216357,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":19,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"account.bitvavo.com/assets/favicon.ico","fqdn":"account.bitvavo.com","domain":"bitvavo.com","tld":"com"},"ip":{"addr":"104.18.39.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.286Z","timestamp":1781941642286,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account.bitvavo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Apr 2026 11:29:51 GMT","end":"Sun, 26 Jul 2026 12:29:41 GMT"},"fingerprint":{"sha1":"6F:93:10:17:A6:3E:0E:AE:D0:5F:56:5F:0A:EE:26:C9:BF:63:41:C4","sha256":"A4:D4:E7:DA:1D:E4:75:09:65:7E:32:DE:DA:DA:08:0D:37:B3:75:9A:BA:08:3A:F3:CF:E6:F2:B1:6E:60:03:C8"}}},"request":{"raw":"GET /assets/favicon.ico HTTP/1.1\r\nHost: account.bitvavo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sample-painting.com/\r\nCookie: __cf_bm=Cx9xSDdUg9r7mO93yqGPlTbNAlN3kKTl4rTgT1sueuw-1781941642.1460474-1.0.1.1-E83BbBV7JIdISA1XC.P9saxuzIO0Hy64jidt6lM9GXYxC1E2XEleyPsDykonXqKmgVgiYiHTvSx6wP_AO2p7dDdhauqndL63EwG15H6yPyuO2tDBJqCICidmbWrp10Oa; _cfuvid=GvdTsISAqRyP7Cuo92XEj4Frj8OH1TWq3j6tE7XEtgU-1781941642.1460474-1.0.1.1-i3bNWylQOPNURuwacAeNAqC7O.9omod7f7yBDQFyxgQ\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sat, 20 Jun 2026 07:47:22 GMT\r\ncontent-type: image/x-icon\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nlast-modified: Fri, 19 Jun 2026 12:58:48 GMT\r\ncache-control: public, max-age=86400\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\ncontent-security-policy: default-src https:;   connect-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://*.emb-api.com https://pagead2.googlesyndication.com https://www.google.com https://googleads.g.doubleclick.net https://www.redditstatic.com https://wa.onelink.me https://braze.bitvavo.com https://data.bitvavo.com wss://account.bitvavo.com wss://ws.bitvavo.com https://edge.bitvavo.com https://sentry.monitoring.bitvavo.com https://api.bitvavo.com https://id.bitvavo.com https://login.bitvavo.com/ https://id.bitvavo.com https://v.fourthline.com https://api.fourthline.com https://checkoutshopper-live.adyen.com/ https://tr6.snapchat.com https://conversions-config.reddit.com https://api.web3modal.org https://explorer-api.walletconnect.com wss://relay.walletconnect.com https://secure.walletconnect.com https://pulse.walletconnect.org https://*.ledger.com wss://*.ledger.com https://edge.r2.bitvavo.com https://public.bitvavo.com https://retail.bitvavo.com https://www.google.com https://google.com https://pay.google.com https://googleads.g.doubleclick.net https://bitvavo.absmartly.io https://*.googleapis.com https://*.launchdarkly.com https://wa.onelink.me https://*.appsflyer.com https://sdk.fra-01.braze.eu/ https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.zendesk.com wss://*.zendesk.com https://ekr.zdassets.com https://*.smooch.io wss://*.smooch.io https://tr.snapchat.com wss://*.zopim.com https://*.zopim.com *.onfido.com wss://*.onfido.com https://www.tradingview.com/snapshot/ https://telephony.onfido.com/v1/ wss://sync.onfido.com/v2/socket.io/ https://api.onfido.com https://api.us.onfido.com https://api.ca.onfido.com http://onfido.com https://stats.g.doubleclick.net https://prod-proof-of-funds.s3.eu-west-1.amazonaws.com https://wa.appsflyersdk.com https://wa.appsflyer.com/events https://sgtm.bitvavo.com https://conversions-config.reddit.com https://tr6.snapchat.com https://analytics.google.com https://rpc.walletconnect.org https://explorer-api.walletconnect.com wss://relay.walletconnect.com wss://relay.walletconnect.org https://secure.walletconnect.com https://pulse.walletconnect.org https://api.web3modal.org https://prod-crypto-address-verification.s3.eu-west-1.amazonaws.com https://prod-crypto-address-verification.s3.eu-east-1.amazonaws.com blob: https://rpc.walletconnect.com https://relay.walletconnect.com https://relay.walletconnect.org https://api.web3modal.com https://keys.walletconnect.com https://keys.walletconnect.org https://notify.walletconnect.com https://notify.walletconnect.org https://echo.walletconnect.com https://echo.walletconnect.org https://push.walletconnect.com https://push.walletconnect.org wss://www.walletlink.org https://pulse.walletconnect.com https://www.facebook.com https://bat.bing.net https://applepay.cdn-apple.com https://api.freeday.ai https://eu.i.posthog.com https://*.amplitude.com https://widget.trustpilot.com https://bat.bing.com wss://webchat.freeday.chat https://webchat.freeday.chat/;  font-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  https://cdn.appsflyer.com https://fonts.gstatic.com https://sdk.onfido.com data:;  style-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  'unsafe-inline' https://*.amplitude.com https://www.googletagmanager.com/debug/badge.css https://fonts.googleapis.com https://sdk.onfido.com data:;  base-uri 'none';  media-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  https://*.amplitude.com https://static.zdassets.com blob:;  object-src 'none';  img-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://www.google.nl https://assets.bitvavo.com https://bitvavo.com https://www.facebook.com https://icons.bitvavo.com https://checkoutshopper-live.adyen.com http://localhost:2002 http://localhost:5938 http://localhost:6039 http://localhost:7070 http://localhost:21115 http://localhost:21116 https://explorer-api.walletconnect.com https://storage.googleapis.com/chat-attachments-656d7f0/ https://*.amplitude.com https://cdn.braze.eu https://googleads.g.doubleclick.net https://www.google.com https://google.com https://www.gstatic.com/instantbuy/ https://impressions.onelink.me https://fonts.gstatic.com https://*.google-analytics.com https://*.googletagmanager.com https://analytics.twitter.com https://t.co https://alb.reddit.com https://tr.snapchat.com https://*.zendesk.com https://*.zdusercontent.com https://v2assets.zopim.io/ https://static.zdassets.com https://lipis.github.io/flag-icon-css/flags/ https://stats.g.doubleclick.net https://sdk.onfido.com https://app-production-public-s3.s3.eu-central-1.amazonaws.com https://explorer-api.walletconnect.com  https://walletconnect.org https://walletconnect.com https://secure.walletconnect.com https://secure.walletconnect.org https://tokens-data.1inch.io https://tokens.1inch.io https://ipfs.io https://bat.bing.net https://cdn.freeday.ai/ https://bat.bing.com https://www.google.nl https://*.graphassets.com data: blob:;  script-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://id.bitvavo.com https://pagead2.googlesyndication.com https://static.cloudflareinsights.com https://api.fourthline.com https://sandbox.v.fourthline.com/v1/build/p-7520de5d.js https://maps.googleapis.com https://bitvavo.zendesk.com 'sha256-FlfZFnlmO38L2+w9jbpDYqtA7AkXdNtHTSucTr9Si9o=' 'sha256-6L7V7u1Tn+ocQzXXUhA5bLtKuRG2aIKF6hycTvcWD3U=' https://*.amplitude.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://static.cloudflareinsights.com https://*.google-analytics.com https://*.googletagmanager.com https://www.gstatic.com https://sgtm.bitvavo.com https://static.ads-twitter.com https://www.redditstatic.com https://ekr.zendesk.com https://*.smooch.io https://connect.facebook.net/ wss://*.zopim.com https://s2.adform.net https://cdn.enhencer.com https://pixel.tapad.com https://r.dlx.addthis.com https://x.skimresources.com https://so.rlcdn.com https://sc-static.net https://tr.snapchat.com https://bitvavo.com https://cdn.jsdelivr.net/npm/@freeday-ai/ https://eu-assets.i.posthog.com https://static.zdassets.com https://widget.trustpilot.com https://www.woopra.com/track/ https://www.google.com/recaptcha/ https://sdk.onfido.com https://assets.onfido.com https://websdk.appsflyer.com https://track.adform.net/ https://stats.g.doubleclick.net https://challenges.cloudflare.com https://bat.bing.com https://applepay.cdn-apple.com https://pay.google.com blob:;   upgrade-insecure-requests; block-all-mixed-content;\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: origin-when-cross-origin\r\nx-envoy-upstream-service-time: 1\r\nx-envoy-decorator-operation: frontend-panel-next.web.svc.cluster.local:80/*\r\ncf-cache-status: DYNAMIC\r\netag: W/\"6a353d08-1419\"\r\ncontent-encoding: gzip\r\ncf-ray: a0e92a404f36b512-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Onfido","description":"Onfido is a technology company that helps businesses verify people's identities using a photo-based identity document, a selfie and artificial intelligence algorithms.","website":"https://onfido.com","common_platform_enumeration":"","icon":"Onfido.svg","categories":["Security","Authentication"]}],"data":{"size":5145,"size_decoded":12324,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"e225e6de4ba2c7c030cdd1aacc659fa3","sha1":"b4920325202ca4c14390b63133a67c03a61dbf49","sha256":"86f1e10c1226e7e164e03e35093024f5ec3ee6c66ca85fcf140a37980a7b64ae","sha512":"206470bdde716be42208ffab57982d31f4ce4debbb5bd11e4b39ecb91ca7dcccd3920f69f43a07c1aa085815d34670604828670be90fe85e451027a6e5c7ffa4","ssdeep":"96:B9gut5j6HjQoaJi55s0b+UeV68tpxRl/NijcUFK+oZ2:wut5j6DQoaQPshVPvet2A","tlshash":"d0b17de6ea96c479e88b6859384157239dd35c1084a743398e18ce0eff47713be86a88","first_seen":"2025-06-09T10:49:03.588304Z","last_seen":"2026-06-22T01:58:40.458856Z","times_seen":15,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sample-painting.com/two.html","fqdn":"sample-painting.com","domain":"sample-painting.com","tld":"com"},"ip":{"addr":"192.185.103.89","port":443,"asn":19871,"as":"NETWORK-SOLUTIONS-HOSTING","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T07:47:20.854Z","timestamp":1781941640854,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sample-painting.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 May 2026 01:26:36 GMT","end":"Sat, 22 Aug 2026 01:26:35 GMT"},"fingerprint":{"sha1":"99:58:DA:1A:74:71:47:B8:AD:EF:5B:CD:51:FA:3B:47:E1:B6:53:32","sha256":"CB:13:29:C1:79:E2:CF:19:62:51:8E:37:31:6F:78:16:D8:6D:E9:F0:6F:A7:17:DC:F0:C4:91:0A:F1:80:EA:0A"}}},"request":{"raw":"GET /two.html HTTP/1.1\r\nHost: sample-painting.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nlast-modified: Fri, 23 Feb 2024 07:20:20 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 10332\r\ncontent-type: text/html\r\ndate: Sat, 20 Jun 2026 07:47:21 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":39962,"size_decoded":10583,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1083), with CRLF line terminators","md5":"3a1a816e98fa8aa0ce861ea91c468f72","sha1":"c2484d62819d4628d4f3097547b83d9e8f6b9571","sha256":"0dbf967e596ea5c51a2f4fb89191b5f0a3e1b2a9efc0dd6580857d7607139bef","sha512":"178a72e8d1b96a0e9a14ae33b1cf6f54ca6826be716a4204810a5ccf5a2785bfc5095ab68844ed0ab51d8dc5fd83dbe12a014f123599f74038b678c2e5e4c4b6","ssdeep":"192:sZZ3Gsc9qnbH/XjSp+QSqsiyHoSTwocgYz9vPhPJWsRWSOQa1095LPOVhg/h3hg3:GZWiH/WpK6yHfToEqxyyVsnDPM46KfMw","tlshash":"5203b816f580902b553347789bf2951bff7ac193cb039b9a3aeca6410ff6c900a63d95","first_seen":"2025-08-11T20:33:44.593824Z","last_seen":"2026-06-22T01:58:40.44903Z","times_seen":17,"resource_available":true,"data":null}},"time_used":701,"timings":{"blocked":-1,"dns":234,"connect":92,"send":0,"wait":185,"receive":0,"ssl":190},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"sample-painting.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.063Z","timestamp":1781941642063,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 May 2026 08:38:19 GMT","end":"Mon, 17 Aug 2026 08:38:18 GMT"},"fingerprint":{"sha1":"4D:E0:8E:62:2F:B2:3D:28:5D:7D:B5:8D:C5:3A:72:E4:EE:AB:7D:93","sha256":"AE:0B:4F:B5:B7:41:E5:0C:70:C0:E1:2A:F9:DB:AD:A8:64:94:F3:70:6D:38:1C:8A:8A:CA:52:96:5C:D8:5C:87"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sample-painting.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 20 Jun 2026 07:47:22 GMT\r\ndate: Sat, 20 Jun 2026 07:47:22 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7581,"size_decoded":1405,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"7575ffd6532e96f3830de7bc9efc8544","sha1":"348ab893b08a4854b7715fcabf3843a26e15ed9e","sha256":"a10e7cf1445dc2d00971db17adcd20ec035a11211c982265f321e6658501b15b","sha512":"1fa9e882de10d071f440582aa2594802d406d9e2c484e1e6971e6b8ac3f02f81aedbe6e09689412296c7bf0d461bafbf223b09bd00227d84e6c003c23aa8adc6","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlx:vXuM0pR","tlshash":"e0f17792002ba400ab971dc223cf7f3aaece50896085d1b95ffd0dc59ceed66436876d","first_seen":"2025-09-11T07:42:16.456799Z","last_seen":"2026-06-22T14:30:25.947614Z","times_seen":8090,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":2,"connect":18,"send":0,"wait":34,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.auth0.com/ulp/react-components/1.85.61/css/main.cdn.min.css","fqdn":"cdn.auth0.com","domain":"auth0.com","tld":"com"},"ip":{"addr":"65.9.68.34","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.066Z","timestamp":1781941642066,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.auth0.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Tue, 25 Nov 2025 00:00:00 GMT","end":"Wed, 23 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EE:25:AB:49:F7:5A:04:16:3A:29:6C:54:0C:30:04:7A:96:AF:06:E9","sha256":"23:D9:CB:59:73:2C:99:3D:A5:23:3E:C8:CF:C6:66:08:EC:F8:A3:FE:C5:13:05:3C:C5:03:60:D3:D2:B7:25:B9"}}},"request":{"raw":"GET /ulp/react-components/1.85.61/css/main.cdn.min.css HTTP/1.1\r\nHost: cdn.auth0.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sample-painting.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css\r\ndate: Sat, 20 Jun 2026 05:38:42 GMT\r\nx-amz-replication-status: FAILED\r\nlast-modified: Tue, 13 Feb 2024 14:28:27 GMT\r\nserver: AmazonS3\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=86400\r\nx-amz-version-id: TpQm4Vj78Q9A_wSFzPhCQuC3aPUk1XUW\r\ncontent-encoding: gzip\r\netag: W/\"ed27df860130c1d9fdc760d0488aa82d\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 341c4a011d81d1a34d88d3adcf5b63b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P4\r\nx-amz-cf-id: n0zrzPgpbcAg1CtoTG8QA7Nk4zi9VaLmCqtYzFviNs5atsmx5W45Tw==\r\nage: 7721\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains\r\nx-robots-tag: noindex\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":277416,"size_decoded":65533,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65528), with no line terminators","md5":"ed27df860130c1d9fdc760d0488aa82d","sha1":"0ded10aa38475b6cec7e7fad74b03d75ea2c26c1","sha256":"3dd726c14ea35a61893c508aac680fbf39c5bffdcc1188736fbcdd8a14c72ad2","sha512":"5aa689def631f10b50d84a131392d92778f11f5557bcd6e07028d7d8bc743924c1698369a613b8a890e2612beea893b06d1c0e9bb0d1f0f8a9a7997674da1586","ssdeep":"1536:sInKVb4fev6MQJNkXE6dj8xOMsCEUrVdc08gSsqc+vmO4x1QcG+uwzJ6guMoq4UE:DnNevWKZgoanyc8gS28TH9","tlshash":"35440af4a71480bebc074d7f7b7ea849a30fe8edea8446c9891f9760d2c35d66502874","first_seen":"2024-06-29T09:33:12Z","last_seen":"2026-06-22T01:58:40.455068Z","times_seen":99,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":5,"connect":10,"send":0,"wait":35,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"account.bitvavo.com/assets/bitvavo-logo-black.png","fqdn":"account.bitvavo.com","domain":"bitvavo.com","tld":"com"},"ip":{"addr":"104.18.39.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://sample-painting.com/two.html","date":"2026-06-20T07:47:22.072Z","timestamp":1781941642072,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account.bitvavo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 27 Apr 2026 11:29:51 GMT","end":"Sun, 26 Jul 2026 12:29:41 GMT"},"fingerprint":{"sha1":"6F:93:10:17:A6:3E:0E:AE:D0:5F:56:5F:0A:EE:26:C9:BF:63:41:C4","sha256":"A4:D4:E7:DA:1D:E4:75:09:65:7E:32:DE:DA:DA:08:0D:37:B3:75:9A:BA:08:3A:F3:CF:E6:F2:B1:6E:60:03:C8"}}},"request":{"raw":"GET /assets/bitvavo-logo-black.png HTTP/1.1\r\nHost: account.bitvavo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://sample-painting.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 07:47:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 962\r\nserver: cloudflare\r\nlast-modified: Fri, 19 Jun 2026 12:58:48 GMT\r\netag: \"6a353d08-3c2\"\r\ncache-control: public, max-age=86400\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\ncontent-security-policy: default-src https:;   connect-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://*.emb-api.com https://pagead2.googlesyndication.com https://www.google.com https://googleads.g.doubleclick.net https://www.redditstatic.com https://wa.onelink.me https://braze.bitvavo.com https://data.bitvavo.com wss://account.bitvavo.com wss://ws.bitvavo.com https://edge.bitvavo.com https://sentry.monitoring.bitvavo.com https://api.bitvavo.com https://id.bitvavo.com https://login.bitvavo.com/ https://id.bitvavo.com https://v.fourthline.com https://api.fourthline.com https://checkoutshopper-live.adyen.com/ https://tr6.snapchat.com https://conversions-config.reddit.com https://api.web3modal.org https://explorer-api.walletconnect.com wss://relay.walletconnect.com https://secure.walletconnect.com https://pulse.walletconnect.org https://*.ledger.com wss://*.ledger.com https://edge.r2.bitvavo.com https://public.bitvavo.com https://retail.bitvavo.com https://www.google.com https://google.com https://pay.google.com https://googleads.g.doubleclick.net https://bitvavo.absmartly.io https://*.googleapis.com https://*.launchdarkly.com https://wa.onelink.me https://*.appsflyer.com https://sdk.fra-01.braze.eu/ https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.zendesk.com wss://*.zendesk.com https://ekr.zdassets.com https://*.smooch.io wss://*.smooch.io https://tr.snapchat.com wss://*.zopim.com https://*.zopim.com *.onfido.com wss://*.onfido.com https://www.tradingview.com/snapshot/ https://telephony.onfido.com/v1/ wss://sync.onfido.com/v2/socket.io/ https://api.onfido.com https://api.us.onfido.com https://api.ca.onfido.com http://onfido.com https://stats.g.doubleclick.net https://prod-proof-of-funds.s3.eu-west-1.amazonaws.com https://wa.appsflyersdk.com https://wa.appsflyer.com/events https://sgtm.bitvavo.com https://conversions-config.reddit.com https://tr6.snapchat.com https://analytics.google.com https://rpc.walletconnect.org https://explorer-api.walletconnect.com wss://relay.walletconnect.com wss://relay.walletconnect.org https://secure.walletconnect.com https://pulse.walletconnect.org https://api.web3modal.org https://prod-crypto-address-verification.s3.eu-west-1.amazonaws.com https://prod-crypto-address-verification.s3.eu-east-1.amazonaws.com blob: https://rpc.walletconnect.com https://relay.walletconnect.com https://relay.walletconnect.org https://api.web3modal.com https://keys.walletconnect.com https://keys.walletconnect.org https://notify.walletconnect.com https://notify.walletconnect.org https://echo.walletconnect.com https://echo.walletconnect.org https://push.walletconnect.com https://push.walletconnect.org wss://www.walletlink.org https://pulse.walletconnect.com https://www.facebook.com https://bat.bing.net https://applepay.cdn-apple.com https://api.freeday.ai https://eu.i.posthog.com https://*.amplitude.com https://widget.trustpilot.com https://bat.bing.com wss://webchat.freeday.chat https://webchat.freeday.chat/;  font-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  https://cdn.appsflyer.com https://fonts.gstatic.com https://sdk.onfido.com data:;  style-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  'unsafe-inline' https://*.amplitude.com https://www.googletagmanager.com/debug/badge.css https://fonts.googleapis.com https://sdk.onfido.com data:;  base-uri 'none';  media-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/  https://*.amplitude.com https://static.zdassets.com blob:;  object-src 'none';  img-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://www.google.nl https://assets.bitvavo.com https://bitvavo.com https://www.facebook.com https://icons.bitvavo.com https://checkoutshopper-live.adyen.com http://localhost:2002 http://localhost:5938 http://localhost:6039 http://localhost:7070 http://localhost:21115 http://localhost:21116 https://explorer-api.walletconnect.com https://storage.googleapis.com/chat-attachments-656d7f0/ https://*.amplitude.com https://cdn.braze.eu https://googleads.g.doubleclick.net https://www.google.com https://google.com https://www.gstatic.com/instantbuy/ https://impressions.onelink.me https://fonts.gstatic.com https://*.google-analytics.com https://*.googletagmanager.com https://analytics.twitter.com https://t.co https://alb.reddit.com https://tr.snapchat.com https://*.zendesk.com https://*.zdusercontent.com https://v2assets.zopim.io/ https://static.zdassets.com https://lipis.github.io/flag-icon-css/flags/ https://stats.g.doubleclick.net https://sdk.onfido.com https://app-production-public-s3.s3.eu-central-1.amazonaws.com https://explorer-api.walletconnect.com  https://walletconnect.org https://walletconnect.com https://secure.walletconnect.com https://secure.walletconnect.org https://tokens-data.1inch.io https://tokens.1inch.io https://ipfs.io https://bat.bing.net https://cdn.freeday.ai/ https://bat.bing.com https://www.google.nl https://*.graphassets.com data: blob:;  script-src 'self' account.bitvavo.com account-kinder.bitvavo.com https://login.bitvavo.com/ https://bitvavo.com/ https://id.bitvavo.com https://pagead2.googlesyndication.com https://static.cloudflareinsights.com https://api.fourthline.com https://sandbox.v.fourthline.com/v1/build/p-7520de5d.js https://maps.googleapis.com https://bitvavo.zendesk.com 'sha256-FlfZFnlmO38L2+w9jbpDYqtA7AkXdNtHTSucTr9Si9o=' 'sha256-6L7V7u1Tn+ocQzXXUhA5bLtKuRG2aIKF6hycTvcWD3U=' https://*.amplitude.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://static.cloudflareinsights.com https://*.google-analytics.com https://*.googletagmanager.com https://www.gstatic.com https://sgtm.bitvavo.com https://static.ads-twitter.com https://www.redditstatic.com https://ekr.zendesk.com https://*.smooch.io https://connect.facebook.net/ wss://*.zopim.com https://s2.adform.net https://cdn.enhencer.com https://pixel.tapad.com https://r.dlx.addthis.com https://x.skimresources.com https://so.rlcdn.com https://sc-static.net https://tr.snapchat.com https://bitvavo.com https://cdn.jsdelivr.net/npm/@freeday-ai/ https://eu-assets.i.posthog.com https://static.zdassets.com https://widget.trustpilot.com https://www.woopra.com/track/ https://www.google.com/recaptcha/ https://sdk.onfido.com https://assets.onfido.com https://websdk.appsflyer.com https://track.adform.net/ https://stats.g.doubleclick.net https://challenges.cloudflare.com https://bat.bing.com https://applepay.cdn-apple.com https://pay.google.com blob:;   upgrade-insecure-requests; block-all-mixed-content;\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nreferrer-policy: origin-when-cross-origin\r\naccept-ranges: bytes\r\nx-envoy-upstream-service-time: 1\r\nx-envoy-decorator-operation: frontend-panel-next.web.svc.cluster.local:80/*\r\nset-cookie: __cf_bm=Cx9xSDdUg9r7mO93yqGPlTbNAlN3kKTl4rTgT1sueuw-1781941642.1460474-1.0.1.1-E83BbBV7JIdISA1XC.P9saxuzIO0Hy64jidt6lM9GXYxC1E2XEleyPsDykonXqKmgVgiYiHTvSx6wP_AO2p7dDdhauqndL63EwG15H6yPyuO2tDBJqCICidmbWrp10Oa; HttpOnly; SameSite=None; Secure; Path=/; Domain=bitvavo.com; Expires=Sat, 20 Jun 2026 08:17:22 GMT\n_cfuvid=GvdTsISAqRyP7Cuo92XEj4Frj8OH1TWq3j6tE7XEtgU-1781941642.1460474-1.0.1.1-i3bNWylQOPNURuwacAeNAqC7O.9omod7f7yBDQFyxgQ; HttpOnly; SameSite=None; Secure; Path=/; Domain=bitvavo.com\r\ncf-cache-status: DYNAMIC\r\ncf-ray: a0e92a3f6a380daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Onfido","description":"Onfido is a technology company that helps businesses verify people's identities using a photo-based identity document, a selfie and artificial intelligence algorithms.","website":"https://onfido.com","common_platform_enumeration":"","icon":"Onfido.svg","categories":["Security","Authentication"]},{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":962,"size_decoded":8979,"mime_type":"image/png","magic":"PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced","md5":"687767a3b700035fa74c978db1707584","sha1":"86d73417f11b7d3c0c374c426ec3bcdd5b607c82","sha256":"c8174eee4690a6a2e55255536500d782c2465b22a9072c93bea19dab0b5c9769","sha512":"4673b34c79db0d82488c43bcc687a2e45603d73e796844bc9e847a07b7174fa0b6fdec1b32fa7fea7d6b278a424996002661d6278ee6d43e23de0af0f0c1052f","ssdeep":"","tlshash":"3a11c8c9caadc5ddd54c8220f04920b5fd2420cd00040ec4b730465d8d0a97dd4debe6","first_seen":"2024-06-03T11:08:20Z","last_seen":"2026-06-22T01:58:40.456447Z","times_seen":59,"resource_available":false,"data":null}},"time_used":167,"timings":{"blocked":71,"dns":0,"connect":1,"send":0,"wait":78,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}