{"report_id":"495cc363-4a11-4a1d-9f6f-181841d630fe","version":6,"status":"done","tags":[],"date":"2026-01-01T13:40:03Z","url":{"schema":"http","addr":"claimbux.net/","fqdn":"claimbux.net","domain":"claimbux.net","tld":"net"},"ip":{"addr":"91.92.241.15","port":0,"asn":0,"as":"","country":"Bulgaria","country_code":"BG"},"final":{"url":{"schema":"https","addr":"claimbux.net/","fqdn":"claimbux.net","domain":"claimbux.net","tld":"net"},"title":"Roblox 19th Year Anniversary Giveaway","dom":{"size":4594,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"c022eb322385ac1d787ff10269915a19","sha1":"6d2af99a94788c70991e29d9003f57a022ae79b5","sha256":"48e8477ab6eb4b74e263f6d913159e4e965da36c9d4bbece5d8a03008b2a0414","sha512":"0d19ad1abded38d61d5585bf5d8aa7647ff58c73fd056999dab8f4283c6ef19b568f8dc02639964ccc6fa71d9034874981c87684298091b8615cd306406cabb9","ssdeep":"96:nhr/YaFfPHJpvbFD0y8ZWhuwFnt8V2uTstjo:hrAqPp9bFD0yGsnQTajo","tlshash":"b791525bd5f3019b7953a0182bb7970a3b949447c90ecd6a3fdc7298cf445a6993338c","dom_hash":"domhashcc9aa4421ac6524a2fa86fb599ba18c6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"claimbux.net/","fqdn":"claimbux.net","domain":"claimbux.net","tld":"net"},"ip":{"addr":"91.92.241.15","port":0,"asn":0,"as":"","country":"Bulgaria","country_code":"BG"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-05T13:40:03Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"tq2tmylv9quqkoe"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-01-01","alert":"Phishing Block","trigger":"claimbux.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"claimbux.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"claimbux.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"claimbux.net","ip":{"addr":"91.92.241.15","port":443,"asn":0,"as":"","country":"Bulgaria","country_code":"BG"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":3,"request_count":1,"received_data":5154,"sent_data":481,"comment":"","tags":null,"fingerprints":null},{"fqdn":"imgur.com","ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2009-01-09","domain_rank":695,"first_seen":"2012-10-04T02:07:24Z","last_seen":"2025-12-26T00:57:21.078661Z","alert_count":0,"request_count":3,"received_data":821320,"sent_data":1185,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"i.imgur.com","ip":{"addr":"151.101.236.193","port":443,"asn":54113,"as":"FASTLY","country":"Norway","country_code":"NO"},"domain_registered":"2009-01-09","domain_rank":3309,"first_seen":"2012-05-21T08:09:36Z","last_seen":"2025-12-29T14:17:35.048216Z","alert_count":0,"request_count":3,"received_data":821989,"sent_data":1191,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"claimbux.net/","fqdn":"claimbux.net","domain":"claimbux.net","tld":"net"},"ip":{"addr":"91.92.241.15","port":443,"asn":0,"as":"","country":"Bulgaria","country_code":"BG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-01T13:39:40.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimbux.net","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 29 Dec 2025 19:42:48 GMT","end":"Sun, 29 Mar 2026 19:42:47 GMT"},"fingerprint":{"sha1":"13:2D:B8:A5:A9:81:0D:A6:77:E0:6C:0F:AE:3F:6E:44:21:C9:7A:1D","sha256":"29:5B:78:F4:DF:27:28:36:E3:80:BD:8C:25:22:D5:C8:BA:10:D3:1E:FA:9D:9F:4C:19:6E:80:FE:74:6D:02:A0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: claimbux.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\nlast-modified: Mon, 29 Dec 2025 18:12:11 GMT\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ncontent-length: 1382\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4617,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"00a9dd2e891da1dc6b70e76f0a830322","sha1":"49b2dc87b584b8fa450096ba8c33083ef10ba509","sha256":"3e4f4eaa03a2d16e02a387cd05e745f7c4cad2a3be1c5d6f895370ebf3892c2d","sha512":"bdc6decac35a359d4dba24dea9afaebba5a45e5655341a0a5b4db9925cae572c20637c70e0eb5d5619551746223d680f3193c0d744734cd0bfbc9426b661a907","ssdeep":"96:V/Y9FfPHJpvbFD0y8ZWhuwFntyV2uTstjI:VArPp9bFD0yGsnWTajI","tlshash":"4591745bd5f3019b7913a0182bb7930a3b919487c90ecd6a3fcc7298cf44595993338c","first_seen":"2026-01-01T13:40:08.394665Z","last_seen":"2026-01-01T13:40:08.394665Z","times_seen":1,"resource_available":false,"data":null}},"time_used":347,"timings":{"blocked":139,"dns":1,"connect":67,"send":0,"wait":68,"receive":0,"ssl":70},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-01-01","alert":"Phishing Block","trigger":"claimbux.net","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"claimbux.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-01","alert":"Sinkholed","trigger":"claimbux.net","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"imgur.com/GrNqiL1.png","fqdn":"imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /GrNqiL1.png HTTP/1.1\r\nHost: imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nretry-after: 0\r\nlocation: https://i.imgur.com/GrNqiL1.png\r\naccept-ranges: bytes\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nx-served-by: cache-bma-essb1270061-BMA\r\nx-cache: HIT\r\nx-cache-hits: 0\r\nx-timer: S1767274781.838800,VS0,VE0\r\nserver: cat factory 1.0\r\nstrict-transport-security: max-age=300\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nx-frame-options: DENY\r\naccess-control-allow-origin: https://imgur.com\r\naccess-control-allow-credentials: false\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":631225,"size_decoded":0,"mime_type":"image/jpeg","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T05:45:54.968102Z","times_seen":13318572,"resource_available":true,"data":null}},"time_used":93,"timings":{"blocked":41,"dns":4,"connect":10,"send":0,"wait":9,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imgur.com/7XdS8dG.png","fqdn":"imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /7XdS8dG.png HTTP/1.1\r\nHost: imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nretry-after: 0\r\nlocation: https://i.imgur.com/7XdS8dG.png\r\naccept-ranges: bytes\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nx-served-by: cache-bma-essb1270061-BMA\r\nx-cache: HIT\r\nx-cache-hits: 0\r\nx-timer: S1767274781.830184,VS0,VE0\r\nserver: cat factory 1.0\r\nstrict-transport-security: max-age=300\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nx-frame-options: DENY\r\naccess-control-allow-origin: https://imgur.com\r\naccess-control-allow-credentials: false\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94236,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T05:45:54.968102Z","times_seen":13318572,"resource_available":true,"data":null}},"time_used":75,"timings":{"blocked":33,"dns":3,"connect":9,"send":0,"wait":9,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/GrNqiL1.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"151.101.236.193","port":443,"asn":54113,"as":"FASTLY","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /GrNqiL1.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/jpeg\r\nlast-modified: Tue, 29 Oct 2024 02:26:46 GMT\r\netag: \"f43ed66372d7487e514c014c82e08171\"\r\nx-amz-storage-class: STANDARD_IA\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: 5EQ60n7KX3AsfYJY536ZtveTIvnFJyonVUCzgjbmkcJPM7Tbe0l-sw==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\nage: 1814442\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nx-served-by: cache-iad-kcgs7200043-IAD, cache-osl6540-OSL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 54, 0\r\nx-timer: S1767274781.853916,VS0,VE2\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 631225\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":631225,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1920x1080, components 3","md5":"f43ed66372d7487e514c014c82e08171","sha1":"87ce18ca5b5734fe04160004e5b48cd084656452","sha256":"f1ecc4e150d60a5bba717217d64deab2ff275bca6ceae98d22b621c84b201708","sha512":"6777f25400255aa96d6ff4f33ff378329fe65f6ae6d2c399bc4122380f15fcb200a23625d5dab252c5f24f0fdf747185390d0e4e67e4ed38ccd81bec3e22654e","ssdeep":"12288:/n/qP/izxKnHmPQSXko10A4K1SnqylCkX0dK2/NYTJHzUKrf:fq6UxlvqyIk0nNYuGf","tlshash":"8ad4235429419d3cf09d00a3199ca99737dc8a2ee3bf79fe01bb61d53b54b2f0a9c098","first_seen":"2025-01-03T10:51:18.271598Z","last_seen":"2026-02-26T07:37:34.737769Z","times_seen":17,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":8,"dns":1,"connect":2,"send":0,"wait":4,"receive":14,"ssl":5},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/7XdS8dG.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"151.101.236.193","port":443,"asn":54113,"as":"FASTLY","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /7XdS8dG.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nlast-modified: Tue, 29 Oct 2024 02:29:16 GMT\r\netag: \"4ae1b6ed9d393cf42e0c6f55c87be587\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: 69O-iAJgqm7yZ0o6F_T4BDiVftEtD86N8TBPwJXyKf30SnimEChCjA==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nage: 1421116\r\nx-served-by: cache-iad-kiad7000085-IAD, cache-osl6540-OSL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 86, 4\r\nx-timer: S1767274781.849201,VS0,VE0\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 94236\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":94236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"4ae1b6ed9d393cf42e0c6f55c87be587","sha1":"7ef80afc46bd9263facb31001744dab29e3372a1","sha256":"2226ac5380669929aa1117572209126c5dd1e699313c5df03366a38b28ba07ae","sha512":"b9a8e4511f4feebe3b1a835f4a089cea8a1ad85e5b148e09531e379dd740102f571ba9dd355f68a44a6c39104bee1c2cee7186b36b3d16e19eebe8e6c7207c7f","ssdeep":"1536:dTZoH4KdzuAfscc0vFkdU1bR7zQn7MnOoz38lsV:ZZnYz5yEEUZJ2KLzsSV","tlshash":"069302c1d4f63486e573b9b4c57a811d5f1b0189ae1212be6320613048fbee58f6faf5","first_seen":"2025-08-08T13:54:43.045902Z","last_seen":"2026-01-31T08:11:39.267576Z","times_seen":9,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":11,"dns":3,"connect":1,"send":0,"wait":2,"receive":3,"ssl":5},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.imgur.com/7XdS8dG.png","fqdn":"i.imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"151.101.236.193","port":443,"asn":54113,"as":"FASTLY","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /7XdS8dG.png HTTP/1.1\r\nHost: i.imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\nlast-modified: Tue, 29 Oct 2024 02:29:16 GMT\r\netag: \"4ae1b6ed9d393cf42e0c6f55c87be587\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-cf-pop: IAD89-P1\r\nx-amz-cf-id: 69O-iAJgqm7yZ0o6F_T4BDiVftEtD86N8TBPwJXyKf30SnimEChCjA==\r\ncache-control: public, max-age=31536000\r\naccept-ranges: bytes\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nage: 1421116\r\nx-served-by: cache-iad-kiad7000085-IAD, cache-osl6540-OSL\r\nx-cache: Miss from cloudfront, HIT, HIT\r\nx-cache-hits: 86, 5\r\nx-timer: S1767274781.895615,VS0,VE0\r\nstrict-transport-security: max-age=300\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\nserver: cat factory 1.0\r\nx-content-type-options: nosniff\r\ncontent-length: 94236\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94236,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced","md5":"4ae1b6ed9d393cf42e0c6f55c87be587","sha1":"7ef80afc46bd9263facb31001744dab29e3372a1","sha256":"2226ac5380669929aa1117572209126c5dd1e699313c5df03366a38b28ba07ae","sha512":"b9a8e4511f4feebe3b1a835f4a089cea8a1ad85e5b148e09531e379dd740102f571ba9dd355f68a44a6c39104bee1c2cee7186b36b3d16e19eebe8e6c7207c7f","ssdeep":"1536:dTZoH4KdzuAfscc0vFkdU1bR7zQn7MnOoz38lsV:ZZnYz5yEEUZJ2KLzsSV","tlshash":"069302c1d4f63486e573b9b4c57a811d5f1b0189ae1212be6320613048fbee58f6faf5","first_seen":"2025-08-08T13:54:43.045902Z","last_seen":"2026-01-31T08:11:39.267576Z","times_seen":9,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imgur.com/7XdS8dG.png","fqdn":"imgur.com","domain":"imgur.com","tld":"com"},"ip":{"addr":"199.232.196.193","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimbux.net/","date":"2026-01-01T13:39:40.855Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.imgur.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 29 Jan 2025 00:00:00 GMT","end":"Sat, 14 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D","sha256":"B2:9B:23:54:25:04:8F:9E:C6:BC:84:54:20:8B:AB:34:8C:F1:7E:8A:57:AD:55:F3:C9:40:C3:4E:8B:E5:30:6F"}}},"request":{"raw":"GET /7XdS8dG.png HTTP/1.1\r\nHost: imgur.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nretry-after: 0\r\nlocation: https://i.imgur.com/7XdS8dG.png\r\naccept-ranges: bytes\r\ndate: Thu, 01 Jan 2026 13:39:40 GMT\r\nx-served-by: cache-bma-essb1270061-BMA\r\nx-cache: HIT\r\nx-cache-hits: 0\r\nx-timer: S1767274781.885611,VS0,VE0\r\nserver: cat factory 1.0\r\nstrict-transport-security: max-age=300\r\ncache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nx-frame-options: DENY\r\naccess-control-allow-origin: https://imgur.com\r\naccess-control-allow-credentials: false\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":94236,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T05:45:54.968102Z","times_seen":13318572,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}