{"report_id":"93fecfd3-04df-41d2-ae37-2da9da55d0e9","version":6,"status":"done","tags":[],"date":"2026-01-24T13:55:14Z","url":{"schema":"https","addr":"getmerkl.app","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":"app"},"ip":{"addr":"104.21.87.162","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"getmerkl.app/","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"title":"Distribute Incentives | Merkl","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"getmerkl.app","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":"app"},"ip":{"addr":"104.21.87.162","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-28T13:55:14Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":3}},"detection":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-24","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"getmerkl.app/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-24","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"getmerkl.app/","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"getmerkl.app","ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-01-21T11:33:42.836632Z","last_seen":"2026-01-21T11:33:42.836632Z","alert_count":63,"request_count":62,"received_data":8153577,"sent_data":27536,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"HubSpot CMS Hub","description":"CMS Hub is a content management platform by HubSpot for marketers to manage, optimize, and track content performance on websites, blogs, and landing pages.","website":"https://www.hubspot.com/products/cms","common_platform_enumeration":"","icon":"HubSpot.svg","categories":["CMS"]},{"name":"HubSpot","description":"HubSpot is a marketing and sales software that helps companies attract visitors, convert leads, and close customers.","website":"https://www.hubspot.com","common_platform_enumeration":"","icon":"HubSpot.svg","categories":["Marketing automation"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"getmerkl.app/orion.js","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8256cac1bd4bdcddf5d245ee81fcc52e","sha1":"9a6dedf90a6703f3b2f4cdaecff3226bf689d201","sha256":"ab8c63dd12dd03136ccd032e5b3884c3d6fe72a9a36d8bca6bf99434332dd3bc","sha512":"2a46c67ddb2cb0c7680f68bd4d0e622ead7cc38a0c8034cade6f7bbde1a5c7c4bdce17e489646a28af1126b87c1f525d723f2592bacb4fff47001ab15727965c","ssdeep":"1536:9kaRasaz1dd527mjiIs113usHqBYLsVFX5saB:9kaRcz732aiIsVqBMs5saB","tlshash":"37b340d6594bd0d58e1a10edd077ec09e0681aa3cdacf183ba2cded2755df22884763b","size":107989,"data":"","first_seen":"2026-01-07T13:23:26.426463Z","last_seen":"2026-02-14T09:07:38.758383Z","times_seen":45,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-24","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"getmerkl.app/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e4e6132877c7624372432e88b727e64e","sha1":"61ed86f98a2e68175c8646f66b073f38436a4d60","sha256":"3263d03af722cd9749da1bc406fd80563591080c627e6a946bd5c1fa025ac6f7","sha512":"a6eb74c33f1f57b88487885d502200b88c6ba0e83ec5639566f2381fe7150b9340aa0505f0b45a5f36070795f7947583dd3d60158241f0743a3ce952d5fb6bcf","ssdeep":"","tlshash":"90f0f65d27f332b9627f2152d2038489be50506270dadc49741c91894fd6e6460de69a","size":573,"data":"","first_seen":"2025-08-11T15:47:35.929249Z","last_seen":"2026-02-22T20:16:28.230495Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e7cedee5f4aabfe0f0a25596641b0073","sha1":"9e90df4076abbd3350295826c5ad3ec1856ffd56","sha256":"c2e60dc68f09c70895f8cb98a4a88e16cf3c691d5a96b9c93c3aab931eafc258","sha512":"17dc0e86fcd7af709d5ffb50d255169d2300566d30c2da4345505703e6a6ebf303df263db9561688753bc03af86b134ccfa9f763966f8612ef554be796d6c025","ssdeep":"1536:jQe6pw4biVcuVXdWAgB1PusH2DY7sX3lX56oH:Me6KBVcuVtWAgR2Do2X6oH","tlshash":"7fa340d59a4bd0e08e5a11edd077ed0ae0281aa3cdacf193b92cded1355df22c84753a","size":104467,"data":"","first_seen":"2026-01-07T13:23:26.460119Z","last_seen":"2026-02-14T09:07:38.76649Z","times_seen":45,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-24","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"getmerkl.app/","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-simple.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-simple.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-343\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jdwqg92tsBi%2BbiWDz2GgiTPzfH2wxkztrTFAXJCeHS2PHuvZ0x5k336HjBn3BL6uQc15FmKLyNjc9HJyrRSPED0gAgVcDkMOQVc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006537993b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":835,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (835), with no line terminators","md5":"ba6dccb5aa61a8c8d3c8fb2afe13f7c0","sha1":"c9b9556e79b98bb7b43931458c99cb4610f0c202","sha256":"012fa6a13908928a9212a1de0fcbd2da8f9cd79d17209764ba21bef0d36c0f03","sha512":"4cf54ad4ac5b37b37d9e9dd0bf6943227a1a3c5449d5f2bb270b0f5e262e1e945374b3af30e0efbc5ab726a9d6438fd8d39cc2b91c9556277f75239eee788580","ssdeep":"","tlshash":"7d01c4d0790d062fc2dfb677b9f7f0647a09d4d2c4ba61d3996932034b543e301a618e","first_seen":"2023-06-08T10:15:11Z","last_seen":"2026-06-03T13:58:45.273694Z","times_seen":47,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-avatar.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-avatar.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-18d\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BgcDL9zzSvaaVtnZblAKFbAoymBOozVb7o4%2FXPAMifLl%2FuG4jEJ98CoQWJvl9Oea5rKrTu5IXIZmEmETZS17zxkGGllq%2BmaGZN0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653a9afb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":397,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (397), with no line terminators","md5":"cd6b585bc48ff401456d5441377916fc","sha1":"90e52d24ad2ecd5bf47d3a3a987fe42773cc8032","sha256":"4fe612b013b6a14d6fb16c93f60dce9d546405ecace73b28893c307d3e704f38","sha512":"6a53003588729423476f151d54650e9530e751925aa3517e132e7dd77772ec0bb90f1a98a1e6a4156668e33fb984984e06492b4a6cbecf47c9d923e7c98f4a15","ssdeep":"","tlshash":"91e022310b58653ee46a42b0c872ffcf334a80ce338603e4ce182c3295cd9e2f99a511","first_seen":"2023-06-08T10:15:10Z","last_seen":"2026-06-03T13:58:45.358271Z","times_seen":144,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-ethena.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.121Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-ethena.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-133b\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ghy9d7IO2IUmxDOERKtNsrnPSXvNUXWTMMcn6sLVCDCBumlpd4zUxhAy6C2hvjkNnZVdfMt9zqXanNSPL%2FmQZXiXyp6DN1vskbk%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653d9c0b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4923,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ba486a013f9eff732ffc412046b00b78","sha1":"a4047c269ce172b3831c6f914fd2bb550921f8e9","sha256":"89b109084c4f55c4a21968eafa86d1d0b6512fd9b34b03a0c269b9d8798ea8d4","sha512":"fe736622f9ab2f5ead98b8cc4e2159d21450ea363217451ade042815ac17d0e75e452eec2f4f416463a8c39b7e91770a7c4c520c32e68c9538994d232d05d8d7","ssdeep":"96:6Ez6uX6OT+hpvdXdVLzbhzfx7IF9572OKIfHnQwkT/4F2Mt17ylk:s6T+Bbhzfx82OKKksrylk","tlshash":"56a143dcbaa486fcd842c6d6ff3501ad7b1eb0e698a193a8c6089f4d3e434bcd401a41","first_seen":"2026-01-21T11:33:48.169071Z","last_seen":"2026-01-24T13:55:18.85111Z","times_seen":4,"resource_available":false,"data":null}},"time_used":263,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/index_1.html","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /index_1.html HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8PHZhIw25FbsEP8N3ZnxpwZDLaJgtEcTboP2obtDpEPnlQ%2F0CPnR2PJqXf%2BXoe1OhQznKqRBweMzr2kqfdWFs8YBD8C11WqbvBY%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c3006574a5ab4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":144,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"b8142ee27b35e9c71ac3ec89bd758070","sha1":"28e7cc9812b6f3e061361b6b0050354eb7c702a4","sha256":"522369af31898d9ae3b8cc2c43ff1d3ca6f080230668117c0c327178747aa5af","sha512":"d8e3b344db5fcccff8c74cbfff7393ff035fe24da29e3ed90d09fd8cd76b31cfc9255281848ea83b986660d9c33297fdca086915719f09938b8d957c3b3fbbeb","ssdeep":"","tlshash":"b9c02b22d804080f39005fe1cf5bf0c8c003dc3ce8215c00bc517244e9bc131c413548","first_seen":"2026-01-21T11:33:48.187202Z","last_seen":"2026-01-24T13:55:18.852036Z","times_seen":4,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":234,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Home-featured-image-2.jpg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Home-featured-image-2.jpg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 63814\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-f946\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 267697\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=blFGM5iiBfuQpKskKMs8zpL0WeGZpByvFqKFj4GADv5GRc3Pmnskh1v3FaoUwpuyXFcBZly22szL0YO4pJEO1Yvh5pm76yDx3Nc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c3006580a75b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":63814,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1031, components 3","md5":"1f91ad6b8feeecf0c51e0bc3a8e2bc92","sha1":"39479fdbd5ce3b33b5085f9fce2f5db986330cdb","sha256":"ad2bebf35ade41695fdd6aa3428b9f70ddd848a7586121cff42497e3975d9138","sha512":"a11130acbf29f07a1064461f56d91b628eac0f69f6178a6d4eb26c327b6daa8c98f527a74c56f1da60825760018efb455dc9fde5dc05b778fc133647991c3fb5","ssdeep":"1536:t5OXeNA59km987o5at1uBSq0C7BtqUDRR:tNNA5388ouBSMTDRR","tlshash":"2753e02cc5050e0cc6cf7bb90b7fa218ff56cd48a59f82ec17fa646a0958b65b038c85","first_seen":"2026-01-21T11:33:48.159654Z","last_seen":"2026-01-24T13:55:18.852792Z","times_seen":4,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-slider.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.018Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-slider.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-bc8\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LrYYBdaSEFhYK3VAAP9mW4r8PIbifUVBF3VPGGxT5dPQ6eKcZndgOsCHNay9sc37yhbPWiOgv4dY5pmJza826jnBdq00M4a8ci0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653698cb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3016,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3016), with no line terminators","md5":"0b0ef60cfc864df6165d600d28c277f5","sha1":"0d8051a003564fda29a8fbc06ab8ebd6b137771f","sha256":"777353f0090d3a1ad3522233c6c5e423782d837475b306f748deeda99172a52d","sha512":"f171d504e282a375f7a9e8a2e491b3a9a735dda0d23269e61e0550b709a47bbeff24045a43c1d5d499a8835c52417de4b47f6fd49347af01c0bd9341f7756383","ssdeep":"","tlshash":"1351abdb83a0353b075b0b630b71abb8e36c58d14a422ef9f1817951c7e29f9132d597","first_seen":"2024-05-22T23:24:26Z","last_seen":"2026-06-03T13:58:45.347266Z","times_seen":104,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-services.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.021Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-services.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-4f5\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kd5WZNfn4jWpA5luVuK1Zp38%2BbmC82KgW9NR5DjDkL%2B2haYxsGTUYOtHVMTqz9X62Druu5y0DzjnQB2kuDinTR%2FPcAQyuWixDcA%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653698db4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1269,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1269), with no line terminators","md5":"49e48218cc50ee1dfb143cb1722a90d7","sha1":"a4f4e5cc9680266b5c75dc8ad0b639602f8438bf","sha256":"46452f0d654296ee98ee759b354248d8ed61c451603e20c196a8164ebe5d76f6","sha512":"b88c46dc70e934f30e11616cce45770ad7a1163815d3a3e5ba30f832fe0937a502e5c5b3e91ee92cfe7d64d5257ee1184f3790d845f4748baaf7c6fc8bf447da","ssdeep":"","tlshash":"b021f381d5ca993f82ee15722e77f6646b5c80c054d932c2ebf0f41285e1ead12090fa","first_seen":"2023-06-08T10:15:10Z","last_seen":"2026-06-03T13:58:45.304198Z","times_seen":89,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-footer.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-footer.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-44de\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wdq54hxgRfE3t8BFO02zQ%2BcIPF6lac1p157myrCGDJjXWNE5Tp7oKZgdUyCRBH0yWyTVrC18kCnsDiw4QI6nQJAj5p6fOitvhCU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653b9b5b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17630,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10004)","md5":"35ffac9ef9a989bc54dc11dacce2e1b6","sha1":"f99e0262420f805f9114c66416b28d909d29cae4","sha256":"50727efeaf6c59b7600236ab20c8a30df2383b50dd7c356fb3ed06a23b4648f9","sha512":"a2ced050f09698388be574cb9d17ccb6795cbaa93d7ab735c8fcb576e998243135c1406546f8a1978d7f137d330ff30f297d3c882d8ea4c3c4e2bb99a706c98c","ssdeep":"384:943/0e894t4wNnZiBdQaXAKCBiKllb+OHKo1U9z:9dYNO","tlshash":"ae820fbdfea87428e0d2457a37f9f25c433c94c5ab0a49f3305d69068bc7aa55291fe0","first_seen":"2024-05-13T11:58:49Z","last_seen":"2026-06-03T13:58:45.342331Z","times_seen":217,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":240,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-image.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.087Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-image.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-2948\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dcHnkv%2Fd%2B8c2MHZUErWUJVAHJorZZHmOOUx6HBJKiCe5s4UX68%2FbMiXFam16OLnEWgB6QITW8MQ5ohwAY5vJMMzJor7BO43s7qk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399abb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10568,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10568), with no line terminators","md5":"8625e8486ca060fcd18aef5ae48e04e4","sha1":"b09154346abd6aae06dabe450d4f8b0ff855e133","sha256":"d8ab488c357328db4672f779bffce9be7bcae7f2f973a71f9f21611594f51abb","sha512":"b9f980adf39a64973cfc7097d9ad858fefd39d658084bfdb07f1e3f3bc75e4a683138e0f16a4d4f63ab23d9829eb3aacbb975f2501c72c9924af5e2704f9f114","ssdeep":"48:DhJVgUYdc5ma9xrUemzj4YLLOn/jLsRpjIJSIOfu9ig0lCe+5x1HYxsKBmx16IJ/:FUNeyLWYp0VdkhH/sYwjNN","tlshash":"982242c4aea7181790e89b6472bfb658e3572dd24b0dc3e395b1d6134ac10f62532e4f","first_seen":"2023-12-26T23:37:10Z","last_seen":"2026-05-23T05:50:44.179453Z","times_seen":44,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-bob.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.138Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-bob.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-d2c\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jH9w1vnabXyuFDokTjRQKmk%2BzxmUWtHFT7zwcIF1qFbqPyXb5dMALaHF%2F9nGoz3MlS3%2B59k3mpZHDSt4HiNpJRgWC6iKGYWG6kQ%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065429ccb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3372,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d92fd9e542a49a86d21040853aa4cd67","sha1":"d8da54fc892906dd5ce49a922065dd7a02d65680","sha256":"db2f38a472dd635f35fa81581b588966bf029e5226e2abb1cd7ecb3792a7558b","sha512":"ef317fae69ecf5b04164eb7cb40aee0f7df4e58f3a35a0f6704780ff45ae81dd7da62a3914ce1940d2a5d9e18969d78686c1702cbabf1db1955f4ed14d3483ee","ssdeep":"","tlshash":"db61309c77444af18a8ba6caf78518aeb74f61fcf5c44200c7992b193c864eaed0dcc0","first_seen":"2026-01-21T11:33:48.233626Z","last_seen":"2026-01-24T13:55:18.856015Z","times_seen":4,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-24T13:54:46.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NcCBk0N8NfSv%2FrNiPG3Ed27nLu6ZCFpKvTy%2F2sM0H9SMcdZAM2ssF%2BFs%2FFhv0CWAcaJ8ICnyi49GVEDBiiEly8E5BEeGFcV%2BEjA%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9c30065048d0569b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HubSpot CMS Hub","description":"CMS Hub is a content management platform by HubSpot for marketers to manage, optimize, and track content performance on websites, blogs, and landing pages.","website":"https://www.hubspot.com/products/cms","common_platform_enumeration":"","icon":"HubSpot.svg","categories":["CMS"]},{"name":"HubSpot","description":"HubSpot is a marketing and sales software that helps companies attract visitors, convert leads, and close customers.","website":"https://www.hubspot.com","common_platform_enumeration":"","icon":"HubSpot.svg","categories":["Marketing automation"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":228744,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3704)","md5":"cc4e0c99805bd3070c21f942007967fc","sha1":"99d94ccaac2902fe1a1698af557a30e9e11e993d","sha256":"0bd9b40c0bf6d5928ba0339251ad8755b1cc094e41f9b53a38a0c6737464ce33","sha512":"231ea1fc6acf28c47d0de37d4f8e7149f88f3ea7ace62d6040550d3fd5995279a531fe653f163093e77e4f919efa31b7cea60d31cb03643645f211bec6a3c1cf","ssdeep":"6144:0sgP3iRiniLi27ixDaur4rkiOiJi3cZGi0iYXiPSiFiQa8Ii6i8iKiji8:0soiRiniLi27i2kiOiJi9i0iYXiPSiFv","tlshash":"bd24f662d0e46c36029b52f9e671bf0863a492dfc7060814b8ed26f9cfc6ef1a46715d","first_seen":"2026-01-21T11:33:48.238872Z","last_seen":"2026-01-24T13:55:18.85661Z","times_seen":4,"resource_available":false,"data":null}},"time_used":383,"timings":{"blocked":53,"dns":34,"connect":1,"send":0,"wait":272,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-defer.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:46.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-defer.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-c431\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=45JmK7%2B2fbFy0xQ%2BXJ4aO7qaJOLMUIMSxWcEGKW6MeHdpMVIxQKYuNoy6gCw%2F1auiUAbTK3aErR94co9kCt%2Fbsd0ZS1BBpyD1pM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006535985b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":50225,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (50225), with no line terminators","md5":"2bde54812e4017152792f9c6a20b3952","sha1":"922ed33f692e55aa2d10d4e046965c62907f79d4","sha256":"ff2275fd50726f0827b5166992fba7f9a16eac57e154c4e160cb81654ecbbf4c","sha512":"4986036a1268b10e683f7e78ceada5641707b08da2c3dc9149a1e71250167cf23c1ba023d8bbc1f371c275ce31aad4967e4ea25583cec0379c0d893c07fd9c44","ssdeep":"384:4jPVYG3FYaUVzZCSY7303g34lnIHlCSAfpUWHeKYzV73bB9yMxs3MV6w9VrEIj0H:mamBwMtyJeKuDr1Xzni9e4gFUVrf7P","tlshash":"27334006c160251652fa433577e4ae4c573a10a5054e2ae790af0ab9e3cb7b37a37fcd","first_seen":"2026-01-21T11:33:48.260561Z","last_seen":"2026-01-24T13:55:18.857236Z","times_seen":4,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-tabs.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-tabs.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-b89\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VUu%2BVju07k9O%2FOgm7W7oOx3zVC7qyqSG062Dj7s%2FtpWHSvarKxvFcE8TvKj4pyfleUJsQWuQoQYg3UoJ9uzyw0qG2FHvR9NcsrI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399a3b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2953,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2953), with no line terminators","md5":"54327c2c43ff20ff9251602fdd6caa83","sha1":"906af16e0ef3d473b56377d6c178448f6c9a76e8","sha256":"1952c763d69a7f984825abcc7ece998caa6f36c592a368146b46f1adb5262a2a","sha512":"09ddec506dced134e7f56c0b84d80c5add27e6a9221232cba913cc744365754a40c16ec89a1b31062ebf900ecb95bd3aad57a2850fab91d461b358865f49a505","ssdeep":"","tlshash":"9351c170826862ebe5d6b12dbfb6f14cf32467c1be56137668123a1fd2c6351153064b","first_seen":"2025-07-03T18:42:44.876945Z","last_seen":"2026-06-03T13:58:45.392507Z","times_seen":33,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Point%20system.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.154Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Point%20system.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-265\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CQ4yzQYmzvYOC%2Fcj7prlqpWik85KQar%2BUSBZzrP2I9GFZmKbWIll2gSDf93Lj8ay56BCRlj0kk6hoLljfvkM8qrNwqUbaaeap4U%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065449d4b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":613,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a0c7ad644e0f5c342984edf5b1e94cd6","sha1":"dc85cbf827e2f03353be347602e523941b7fc81a","sha256":"3c1299a60c87e604b4b97d8f07779cde37fd25c732a5fd3e3c86227cf7f2b20e","sha512":"3b10ef6c9330f9ff0ef9c4f58befd613cb6c35eda94105051471d69cfb433d84b0b86c433eb878fe0ce1d6fc9d08428a81cbb859e71664d5c83778a1b65c1ecc","ssdeep":"","tlshash":"d1f0027daeac5fedc5089a013b98b85070ab74e0b321c500f3d83f3ba0390150e44785","first_seen":"2026-01-21T11:33:48.235186Z","last_seen":"2026-01-24T13:55:18.858514Z","times_seen":4,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-form.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.084Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-form.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-93e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nLEV61eD24fp5xFZSadkPgIJgwhp8eM8PvONPafXPmDw0zhXcLIzVLWhWt6EuFPs5YOrfyeUgVjsTC4PQ0xU3W%2BdXNcDP8PSQcw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399a9b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2366,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2366), with no line terminators","md5":"b9804df5a21d2d2bb1e184250294e993","sha1":"1b0eeccfe5fc52b92c6738e3801d9892337ba6db","sha256":"ccf6f25c6da2e62cbd42f99fdf36e63729f0d61f9b7f1c6e27175e865c49e075","sha512":"040b5c477ef3e2638396196a556134092be7a8aac7e04360c52e1528f2c39515cdafdfe4c39e7209bc3ca5861d1b7db8cefa5d132cbbc248c0cc67808e0c815d","ssdeep":"","tlshash":"63417f85b1f967a85b8e932c13f5f716074c28e2580857b6e19a5ff227c7be43512a80","first_seen":"2026-01-21T11:33:48.201052Z","last_seen":"2026-01-24T13:55:18.859159Z","times_seen":4,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-world.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-world.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-1650\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2VWxd6lmchUQNb60qSE10x0gHysZNCE7bxsFJqaksGwm%2BQbwmDFFRzFCMzYhdXyhdkq0FSZfF8TT%2BPiljhaF6Gw7MCHQCrjTA54%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065419cab4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5712,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"563fb977bba848e14b6995e3583a329c","sha1":"f7a14dd7e8e3224c5035d8ebcd8cac12ae26abff","sha256":"daaf3db14adaa3ee32d1f98ed649a8f977355cbfe2413cd3c143c5aa6a189ebb","sha512":"8a998c9491633e63caeab0e5ee3c1b3d0a300cea61635cf02e7323dce5df0bdd0194efc247d7ce92721f35bb92f92a7f189558222bc0053c9a39fa971948f514","ssdeep":"96:ce7ZXPSyc/dDaUMiDCgba1yPqUr3RJIkw89a2TXkpPeiqfGYe9Bdo2tu:vRPSychaUTD4iqUDRJsj2TXklqfGpywu","tlshash":"dfc162dcfb6642f9ed01a6b6ee5200e9b34fa8b744924bb4c35c6f0534894ace944d83","first_seen":"2026-01-21T11:33:48.203497Z","last_seen":"2026-01-24T13:55:18.870209Z","times_seen":4,"resource_available":false,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Lending%20and%20borrowing.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Lending%20and%20borrowing.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-2d9\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0VxczsrQYUyVrrE2nZJYPvirgShFpw3YF%2B9HB%2FyzY2N6nLSdoIC2U23Trwh0chjGkvApbyM0jEo1EvzwPr4tZQew%2Bc3jVDZ%2FeJA%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065439d1b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":729,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"04a3a12c51e37080a3a29902eff07c8d","sha1":"cb1af759ecd1c8c45cd00f417dd78ce92809d2e1","sha256":"011c19babcae31eaaa24ff4fd316a5dba4593748c4e100aae74bc4c3415ed084","sha512":"540bf33ce6552643a2cea313fb26ba23c317a59eb6984b6c18e1656c4dd704f3f5b8344bf09b9d68c9d6b96585e95d86f47d82ae101b9b2a07d8f38b924e3c12","ssdeep":"","tlshash":"c40115dcbbf558c0e905dd69a05634a8618b9cf0bc46ddd190444dc180c75fe0f0d883","first_seen":"2026-01-21T11:33:48.196376Z","last_seen":"2026-01-24T13:55:18.871166Z","times_seen":4,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Airdrop.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.152Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Airdrop.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-820\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Przpow2smElmUSDNU%2BtGBR%2FxQe%2FLVyyNYixnEma7jREnEfdk9udyfqapkKUqAQSMVd2z5q6tqMU99OTgpnrZMwZL4gwImfxfBJE%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065449d3b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2080,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f1e1a6c7314fed4a5ddee26f68257a4b","sha1":"915689c0c282aedc508a47c14a537acf2ba1c271","sha256":"646dfaf799f7595506e8d18e5f9ce2c8c838865f4373e31636b93b8ca3feb191","sha512":"9cd35db085b25cbfe2dca87b34330cc78803af79800cfd2372429063502b7ddd7082f6956c6237c056f2eacb0b6f73a105a4a1661063f54047548cebe452ac13","ssdeep":"","tlshash":"e4414487d750f7cc890dc4b65c36f1f9a36b78e567ba20da40e29714904b8e27a4ce54","first_seen":"2026-01-21T11:33:48.197564Z","last_seen":"2026-01-24T13:55:18.871918Z","times_seen":4,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_scroll-shadow.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.001Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_scroll-shadow.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-159f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HEBbNhSFEtB2ZrMQJHopZE5CpaTgqE%2F6zGwEhHo7ygq4RIVLTtB2C1qO3nNOd%2F7VemnOMthq8ORR%2Bpab3sL1TXuiVz1lP8QhOho%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006535988b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5535,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5535), with no line terminators","md5":"724a91094bf29298781c2d9bc5707b9f","sha1":"b5df843bb3afc2585e24635f17ac1f3059676a1e","sha256":"359f0f45e5285e8a341317ff8bca611ba45e51126ab72dffcba57b33b6144c38","sha512":"479dab51cc3dfc94841f4b9460a29e458a6f02bc3d24739207e3912d672da213bfcc84b64153830017fe19bf36efa0021472ff6105cd38641b2bd55a42ab0eca","ssdeep":"96:lqdlMVm0bJVPmhBk0PEm0/9A4GTX4+3kr4Tf4Rrl6JoTVR2aRJ:l8MVm0bJVuhBk0PEm0/9A4+4+3kB1gaJ","tlshash":"76b176b1d12cb8347efa92acd564730ee241aee2e6d655041082ad3a67d3ff731e1912","first_seen":"2025-04-11T12:41:36.571073Z","last_seen":"2026-06-03T13:58:45.388925Z","times_seen":147,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-testimonials.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-testimonials.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-69f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tv2%2BSrc%2B%2B7Vxj8FGb9cuU5wYbijPg7cjKgyfn7IuVLxuPhq6E5QeXbN5VsxxIQ91jhELz4FsdKegLvR1krpL1a2umyJ7LBQwqWs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399adb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1695,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1695), with no line terminators","md5":"a004c22bfecfc7d4d0b37118f08397df","sha1":"5e006490f71a737be3ef53f884b6e318a7da5f44","sha256":"ea2a021d108d316b6d5a9f66a3794c9bf07c7645431f39a7d9dda34fcb7adfca","sha512":"2979db86e9573d2c8b50e6402111621c8428c9eed0ad97124667896237c2c381a8cb515f5122435b1e884bfa0713039c8574ad2dfee82769a7628cd829a3f080","ssdeep":"","tlshash":"6e316ada6649051ec58eba77eaf5f45cbf14a8e40f9307f2c8993013cc94eb001232ca","first_seen":"2023-06-08T10:15:11Z","last_seen":"2026-06-03T13:58:45.363134Z","times_seen":132,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-accordion.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-accordion.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-225b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BsBBCiUGI4NrCdqvnU92BDbm76Li9Oxu829Zp2k%2Fh%2BKTxNEZqQ0UrU3kOT83Yvak0w5qTNRd7t%2F1S7e4MvcAZl%2FqTugIV6%2FgInI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653b9b4b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8795,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8795), with no line terminators","md5":"8f9e64203f56297801ec9641d12e7e94","sha1":"3c678a505243ca53600a26de7101bd25a69759a0","sha256":"0f6c3ad838dab7a3d72094b132824d7ef6d2aa6a587bd1d638e2fdb49af0a422","sha512":"c4c61f68a49737cc6e86bb7a381130c043dea83fd46b8e562b990fc059e8fdb8030bf25a0b30ca96be511440ba55fab3926adf0886fdde9a43e6955820135a02","ssdeep":"96:WECNuCs5PZSU7G7kCDCTZ6qFCTYK1lP+xAUFfWhf73vUI6SMDq7dbncf7Y7UZy:/Ljta1OTZ6PT5VMOVzviS1aU4c","tlshash":"b702d144d6cc2428a6c9dd751b78ffac833961cdbbc93b9db012a255e7c6398dc81187","first_seen":"2023-08-09T11:26:18Z","last_seen":"2026-04-10T05:56:44.804428Z","times_seen":25,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-aave.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-aave.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-aa2\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Rk4JUeudQZeVZ3fmlwKlkNOJCYBK414m4ZDvfIvE8OYGAU97USxIGVgugyQ67tc19Q7Q8NwBi7KudFABmsTeHdbtdmxcpd16vyA%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065429cdb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2722,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"99dbb3ed2ec2978c05976ee144b199b2","sha1":"ffe8f46a1c22114008e345d318a120a31a426a6b","sha256":"f2a6104e1b872ff410957a52a74bddb7470fd83580bc76ef9fefcbcb33bdd95c","sha512":"27dab8030598942624b4464e3857ec2f6f435ed4a261da8f68cf2b9fe1383e00faec39c8255302d16f138f661b0fe7a9a758b6c7a480e5079b9d25c41b107da2","ssdeep":"","tlshash":"775100ddaf1c0a95e501e3eae616049c901fb8f211820a65c24ddb2a7d7f1eecf29cc4","first_seen":"2026-01-21T11:33:48.226658Z","last_seen":"2026-01-24T13:55:18.875256Z","times_seen":4,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":211,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-marquee.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-marquee.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-3e5\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kHBAPRP8JjpgDAkb7DFGu6tZ8V8RbGAHvo5Su3D2fqrbVyJR%2BMatHPq131%2BuQ2mpVneOw08lyh2w7ehiAer7QgEyzZ9LHh2v4D4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399aab4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":997,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (997), with no line terminators","md5":"3b0214372ba6cc6ea3f6f3de7e585262","sha1":"c63cd60254a18f07409b33b53a2b751054d8afad","sha256":"a0725159b6116b6c77241a033f2671876bb47ee4d04868d2bc43978793b47da8","sha512":"a3294ef20b0dffe16a5aea1e26d618277ca18c7972379dea9e507a65999ffcee47efebad2da5f32285a1c7827aab24d2b28e77407180bb0b6c3fb4b4cfb82a9e","ssdeep":"","tlshash":"2a113603c957a6de8ff11364027cb6190339c5c4f91c165b9f5c7f5122836a11a23e2b","first_seen":"2025-01-24T12:21:01.133465Z","last_seen":"2026-04-19T12:22:40.75698Z","times_seen":8,"resource_available":false,"data":null}},"time_used":254,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":254,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-arbitrum.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-arbitrum.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-2651\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IowYJdLdaOJHAAp4HIhfqfieRg7dHFs4%2B36NOniY1BCRarOary3yivap1shWJ8xwGQ7RRmd7NWT8JZfrBru6uu8bV0QJuElJZi8%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653e9c3b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9809,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7b06d9c98f94ddead4ec315369387850","sha1":"b8a2879a4c972c4821f1eb1a6157bcd0294921ef","sha256":"f9127e0653711de17a77df3a89008bb5571f9962915b588a36e39df7fee28e04","sha512":"45b077f737e7c4f54a479fa4d9c7ea638a7eae43e6a6054fcb459daa5dacdf872a2246276bdf5c17b91facba21560b11a6675022d5a526ba787c17a05120eb61","ssdeep":"192:o3zcoe8YqchYHSOutxO0X5qA8wXz3pIbxf1JEDlvPUyeH809vP:oDjYqchNOutxO0X5qA8wDYJrExH3eBn","tlshash":"cd1270ec275442e0dd4652e3fa0510a9e61f74f6e9c20ba4c3ccbe4e784b865cd85c97","first_seen":"2026-01-21T11:33:48.185Z","last_seen":"2026-01-24T13:55:18.877045Z","times_seen":4,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":215,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-services.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.025Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-services.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-15da\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sbld8k9LG6KxL0muiUWx%2FjyS6TsFhOnGxihRNnn2Vy98KKCHnle5UWLP8nonRLIpUBBKk5ua%2F9EJboi4o1xkrrGzmBkPe2WkRI4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653798fb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5594,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5594), with no line terminators","md5":"c7ae8c594972511a1a77297e5cdf0b5b","sha1":"cc6a0b6d0f2f9c51fcbceca42580633fa8e45144","sha256":"fcdb2f6f95fff9cf23641c02a73fd802ff38dd257690a374bf97fdef274e6209","sha512":"77466822076a7363d76875f648928fbb73779b6aa66a428daa5391350e3dabdc16bcea11a3c5d150ae44aba0b4fb97a45d93ed680c6f721241229a52236f699c","ssdeep":"48:JtIQ4YwJxxjW/ITdITQTLKlTRKCK6LQmFO+2NVyJHK0KSK2yCs5a2vhT2pj33BuJ:JaBY+DW2duGmJ8t6Lu+Dua2vhapkWaT","tlshash":"94b15682d1dfd53885fb6530ae77b65893ac08c295f63193ebf07d0305d6eae2522638","first_seen":"2024-09-08T03:12:37Z","last_seen":"2026-06-03T13:58:45.346152Z","times_seen":62,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-image.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-image.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-20fa\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UDhd%2BrqRy25Z%2FZZXhg5KzMVUujMrGC%2Fu7EaPO73qErWwMQI8XVtJhY6%2Fc622R%2FplXRipXqO1t1uMwYSUesvwyGdJ9550FQ%2FlTyM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399acb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8442,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8442), with no line terminators","md5":"7b6a39a6ffc901e1c968d9e046d7f209","sha1":"1298b0d2a9d913bf4e204cc9d1d9ed36dbd5a8fe","sha256":"c4ee9b1083f71524243044ae397458bce7a39c129e2fd62246505a5d4ebd82b8","sha512":"ea831514713787251761f4b08e1ac00011fd69594a43f8b5ab2531bf3ea75b69404e8106f01b98dcda18711792b6b82280351ab48e6614ccc21cf94ae567dd29","ssdeep":"192:v55gRn3O/50X9HndZVjWNE32plzmfiJ+PCRE/VBxkNiZT419vcZ5INS7w0gw0f9J:v55gRn3O/2X9HndZVjWNE32plzmfiJ+E","tlshash":"cb02f5d0df5b242fa1d8873e317fb2244b8b6cc64798cb9698b4e61182991f50535ecf","first_seen":"2024-09-08T03:12:38Z","last_seen":"2026-06-03T13:58:45.391935Z","times_seen":90,"resource_available":false,"data":null}},"time_used":235,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":235,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-angle.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-angle.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-840\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=03DsOM5UOkP6hSFipTF8FMO91js2vI%2FWIjJ8vK0gOaM6kRBWPNfrB7cgbQKl4zlEPFTE4Zya6Re4EaBw8K0Bu186TNq28dBn4wk%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065439ceb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2112,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e29d6ea97f7f2cc069f0cc6b967bebb7","sha1":"b8f05b8450193e0f5cde7be6e0bd77445d4ae5cc","sha256":"9dc9a7708b7c04b55386ce20733f86a089cb50a7959a511536b990ac547d8fa9","sha512":"8ec354b1d040e5282f6622235c016995ee6e2c6d80ee4579a4c87e3b82d323c1b1cd27bae3207033090aee155d8bc7a28e3733fdde684a72aab5162da2ad4088","ssdeep":"","tlshash":"854179e422987a38b621ca95d70c313d023d04e27d7253a04d956b3f25649edfa3fec9","first_seen":"2026-01-21T11:33:48.258633Z","last_seen":"2026-01-24T13:55:18.879463Z","times_seen":4,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-trust.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.145Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-trust.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-835\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iHQuiTLfw697xXaL%2FRFz5%2BbuH29id13emwpaysNYiqn0CGDJjzw%2F559CC61LHMeS0PBJWOJhvVIV7Fb6pAf5zttZ7qw5VsCIWMU%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065439cfb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2101,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0acf622de60a0b13d645ccd9a25effc7","sha1":"35fe6db843cabd9f172c51bf5edc4053b902bee8","sha256":"b6be82f749a6bd483243c58c704f309a9295998c739a9bc3a64d14cd620637e8","sha512":"4db3da33f8b969ae91b16f92be4e93efc8b25049f351b57ca96baa3dac675d4a1c28a1176ff65a270a53f7eb73282add6567c8e1e2efdd8aa7276daa627ee67e","ssdeep":"","tlshash":"b34132deb7684c76e941c7c6fa0540ae210f94eaa4604da1c75b5f1f38598faec08cc4","first_seen":"2026-01-21T11:33:48.180279Z","last_seen":"2026-01-24T13:55:18.880134Z","times_seen":4,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":245,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:46.988Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-253c4\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pKEXG1Fn12LGiC0DpqJ1zCR%2FH1hgrEvazTGf8X7X0i2fpP4ZTkj0ByhUISRp04BbqmIhA9m6pTuYiEkLLHc6P4w6SZAkS43jr8s%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006535983b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":152516,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (47981)","md5":"249cd6a0d60404f88a356b71a8b457cb","sha1":"d2269daba46592f4d363a4466788a6eae5b3d193","sha256":"b3fdd4ba967c71bc5eb348e53839c38db4ddc8db7ad502a5d549e426082fa931","sha512":"759c40dc4977d5c87cda6999e0426c5434abcc52de4939328a86a09b7a2e334a83373e76a70e779a3aa1deea61408e7679aa3d1577696c414757d9f84bdb7b1b","ssdeep":"3072:zSu/B453z53rG53C53S3rMGWbXGnL4KdTMtjPvDFIum+BXe2+1Q7eX0zXQ2T:Gu/AGWbX3/T","tlshash":"0ae3748df1ccb528aee74736e2fe7e08573422c5c6310697f87226970ac7de17926a11","first_seen":"2026-01-21T11:33:48.231857Z","last_seen":"2026-01-24T13:55:18.880686Z","times_seen":4,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":264,"receive":52,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_advanced-content.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.058Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_advanced-content.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-e19e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mCeiPPvh0dLbcyw%2Bx7tgXeWTZUbz8jp5D%2F81iMqsjbQADNPRhuJdHyJXzCstJ54Tf%2FakNhXUi7MswqvrisOPt1z2D56h%2FzovIqM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006538996b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":57758,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (57758), with no line terminators","md5":"247388dd745ae8f01d82a2dcc605a80b","sha1":"9139a6dfca00ef7806779684c127dc0b4e3147a8","sha256":"da73ba96c069dc7713ac816172b5c9f47dbda0dee9b92f222b21c47fa1c4a839","sha512":"fff27b3132ba90ec9c91c54ad1abc6a5ff7590cbb6cd6f21d331785f538669ac4f5fd7ec263216630a531208186c0c84633d81fb34b511a3d5842e6aa9afdf1e","ssdeep":"384:eGWOG/Lq/olnBPqT1ovzcrlifAar2N4IjcLm2qT:eGWh4r7","tlshash":"cc43e4a9c1fc663083fa972515fafb0c5b5841eee616a16bc0f343ae02cf611dd9a447","first_seen":"2025-01-24T12:21:50.55127Z","last_seen":"2026-05-08T15:30:07.756388Z","times_seen":16,"resource_available":false,"data":null}},"time_used":233,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-accordion.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-accordion.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-16f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AiRAgbLr3QIttTug7nDtVN%2Fjazr%2BEJIB7znrR%2F80g9qoZ%2B0Mrgt%2FPIdyySl7qF%2FRAio9efswP8fnvDN8Vks5KxK5eu9bmkdr%2FwE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653a9b3b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":367,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (367), with no line terminators","md5":"b22f3c883fd4163f170565f1cb388ed0","sha1":"140a78c6ee9206e8f0e989d00810c12db8c5a641","sha256":"9785785cfee0f1b53daa7f8a7d7e10645dc97f7c2014254b7b68db286b507ce3","sha512":"adc326f7f6ada207d71b07a3a4b9e85e2f63582385d482f5fde3f59e7d8cc2a9c2e26ef6ac0bd309237ecceaa82fbd11ad987bc88a7ca7a3a8acb3655b2aea91","ssdeep":"","tlshash":"17e02bc025cc151ad45eedb037b2ea2cb57514f48c4a12e74b4930022ba1be00a474c9","first_seen":"2023-06-08T10:15:10Z","last_seen":"2026-06-03T13:58:45.329264Z","times_seen":56,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-1.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-1.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-2722\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZHfYKL1%2FN1rgtF6UYGQGnQcKo%2FCv1Sa%2B9qCT2F78h61APjwJ5UQjvcn5hvXl3rmtCW33NgDqnCuWjdAlMFyukuQ9GfGjmzrmwuw%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653f9c6b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10018,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"6aeca75d0a2dd1c462568511007859f6","sha1":"d7986390865881366d3515e9d76bf60a9fd555c5","sha256":"d56883488cf6f0fcd0b450ea620f8cdda62475f7a436272f7588fed3f5cd679d","sha512":"6ef9808addba7300ea4430574bcac4b15a3b919d2c853cd3235a59209e38e1fa355ae582fe5acfa5cf7daa6737e4f6b150d199bb1cf120cf29dba22175a71072","ssdeep":"192:ulibTw8sRE7OgnG76mk9nNaEguxvkTOfrQOS4W5qhW/:V/TsREygG7TIAEuTerQOs8K","tlshash":"402252ed3b520ef5ec4293cafa550496770fe8aa85914780c78f9d2930d78bccaa5c46","first_seen":"2026-01-21T11:33:48.230169Z","last_seen":"2026-01-24T13:55:18.882478Z","times_seen":4,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":223,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Liquidity.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Liquidity.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-27c\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vmufXC3riR7oRSKYsQMfN5537F4xKPaQwBJOKfKGBWNv5JOu6l6XdNj62O%2B0E8IvE1b%2ByaEiir%2FMmZwGkHLYopNXO107dn7ndLM%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065439d0b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":636,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f4cd4b410c58a0ff2e3dc604051d5f6d","sha1":"7cd06166901afe70e7a13dca561db4743f03695a","sha256":"c53490bf10fb96bac965d260859ee87748a8a182edd00e6828e39d393ff81770","sha512":"04b94cc30ce643b07e02cc01fedb2e5d98db89b5241f0f80eba40ebdc4a98ca562cd8c9354c6f1158e08523965dbb92e9977698167e39d4100a578d8f2bd6677","ssdeep":"","tlshash":"adf02dcee0b886b4f003e355001590b27c6b30e99dc6c2bccf9a2b42c14162dbc44ca9","first_seen":"2026-01-21T11:33:48.243877Z","last_seen":"2026-01-24T13:55:18.882991Z","times_seen":4,"resource_available":false,"data":null}},"time_used":220,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Merkl%20Recap%20-%20Dec%202025.jpg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Merkl%20Recap%20-%20Dec%202025.jpg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 26398\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-671e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NnsDxbWArIf8T033SDfrq%2B8z43E%2B4n2z227PwGLamil0yjrPDaAXx6h%2BkFd6egpIAbxw3IBmaYCv7lvXxtlHO1FTrUG1vVxnus0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c3006582a7bb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":26398,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x337, components 3","md5":"5f776dbf191e6190154d7f93e7af720d","sha1":"c2601f8eb6c69ee8f2c32ec0b5acf668f214691e","sha256":"8062b048aec9d3cad6104a76d032a1bd51388c49e0f8d00f52aea66066191ce2","sha512":"c1884d3c003b889f3d2ca16d7e96f1cf63d215ad5467c21bd0c86cd9c3075b3ec384f4b483400520e309f0974150abca0c7bda37f41b206e440a4cbe1521dc71","ssdeep":"768:FIKOI02Y2tLNAlQ2w1xw7qOjq69DAT9JwH2TuxLWMzmmu:0AttBOYwuOjq6p6DwLWCA","tlshash":"83c2d12e174ad5dd77ec562114ff1be01c1c3e12135a947ea3c58d546aaeea2d0e0fc4","first_seen":"2026-01-21T11:33:48.202187Z","last_seen":"2026-01-24T13:55:18.883553Z","times_seen":4,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":302,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-clients.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-clients.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-976\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9O2rHAwHjzEdrrTGLBzXFgYuHOKAnFg4yykTNgWZB%2BwkRHw5shk%2FHLJaTRrNIdmeyune9XhAxdN9KwLwin%2FxEOnzPYLKKVPQduA%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653698ab4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2422,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2422), with no line terminators","md5":"d2d132b1ef6f1edfe66a1e97e7c32e18","sha1":"1fd5e6b70fa124f2c4912c0346331f78893c2261","sha256":"eb33cac7c06ecb4745b6721fbbbbdd12a83cce45c853627306b78a8500675389","sha512":"21b03c36fcacda1853171bd16dbdb87a6050a359311b3243247de319ba974d545915725b3dcbf935de7c3a8de09df135cacbe1f8c29d25ad57334444dec3f98a","ssdeep":"","tlshash":"bb418fa59159197ee1c68b72a832fb0fbba84cc34583b792d085311d89cb155c32fbcb","first_seen":"2024-01-02T23:04:35Z","last_seen":"2026-06-03T13:58:45.295681Z","times_seen":152,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-posts.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-posts.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-c9e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yytVV13szPw5btk0CZnztjRSnWkWz3cLSGnf4tWxhnjh%2Fi4ukTsed4ooPdTVileo5SRgV3tfxgu6FmNtJPkDASAbfMCFKpPoIsk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653a9b0b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3230,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (3230), with no line terminators","md5":"40f0b7af327a3a5607a71d38ad1dba2b","sha1":"514da7255faa0a1cb1e1fd7ae7f4410ba81eefa9","sha256":"3703139417aaa574d1889a119c55454ec54aa1ffe8f76538a4feeaf8860d5a27","sha512":"fe0dd78bb0a57a7d3c0860d09d0421a83c7d6490ed38702c02ec254e51ad249a74fac78011bf0448bfaef49c79be30c849c53cf53bfd1793f2291454a2fee2b8","ssdeep":"","tlshash":"4e61f850da5e092fdf9b2b3752ffb0d46f1c8ce2868129c3da81621bc367ad105146cb","first_seen":"2024-09-08T03:12:37Z","last_seen":"2026-06-03T13:58:45.342872Z","times_seen":117,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":289,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-testimonial.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-testimonial.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-a10\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m6L5VUBujVF%2B99SYqOP4%2FvQmM3i5deBT7UR%2BTV6A88WfwnvulGAadvdkTh%2Bq0c2Q2sU%2BSN6Juvqf5U5BsWUkRYmNRlQpi%2Bjtcx4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399aeb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2576,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2576), with no line terminators","md5":"678f09ef1a5663333918ba7ad10eab87","sha1":"f463df10e9d1e2d0cbfc202984c153b5fd458d83","sha256":"920288b36df0f1e0ee8159b81db630ac316e517b3f156329a6f9858c4ce0a517","sha512":"cd4a09ede6ecc48fda4f8dd4dc01ce97fc70fd7c5ccff11bea2a4e7089458689538eae148e27c0b77ab00892ba92c01726e75388cdcca9ef95b9253be581c144","ssdeep":"","tlshash":"c6510192a85f1158a5dab03cc1b5f1186f44fcc57f928fb09e26b823cd896b07a33249","first_seen":"2025-02-13T18:59:28.665944Z","last_seen":"2026-06-03T13:58:45.319645Z","times_seen":83,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":259,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/orion.js","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:46.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /orion.js HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-1a5d5\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mkt47rgMvcmnC4llAXKn6oVtg1JNqufpQ8dZaJtgLnTgpL8mwOdFg3QsTG%2FUp3Nskm5Yj53IqB8QrWt5HQk16GB1%2F5jOJwlo%2B7Y%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006534982b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":107989,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8256cac1bd4bdcddf5d245ee81fcc52e","sha1":"9a6dedf90a6703f3b2f4cdaecff3226bf689d201","sha256":"ab8c63dd12dd03136ccd032e5b3884c3d6fe72a9a36d8bca6bf99434332dd3bc","sha512":"2a46c67ddb2cb0c7680f68bd4d0e622ead7cc38a0c8034cade6f7bbde1a5c7c4bdce17e489646a28af1126b87c1f525d723f2592bacb4fff47001ab15727965c","ssdeep":"1536:9kaRasaz1dd527mjiIs113usHqBYLsVFX5saB:9kaRcz732aiIsVqBMs5saB","tlshash":"37b340d6594bd0d58e1a10edd077ec09e0681aa3cdacf183ba2cded2755df22884763b","first_seen":"2026-01-07T13:23:26.426463Z","last_seen":"2026-02-14T09:07:38.758383Z","times_seen":45,"resource_available":true,"data":null}},"time_used":343,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-24","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"getmerkl.app/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-burger.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:46.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-burger.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-1e59\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PfwpvaIexwuaDgRZpG7iuxYeyKcp6GaR3X8vwDbo0FRy%2B%2BjQmKogz48GpobZBgqZmVytn6Mo8nCLdlOeCRQtXW5YDHmporChe4Q%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006535987b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7769,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7769), with no line terminators","md5":"f385fe8191d3a4e404c6ca36932f0063","sha1":"6feab8dd342303f26b6e8fe02c8667637260e246","sha256":"b17a9671c900a07763b058bf0746c522d6cd84c4c0caabe7e23d93401126e306","sha512":"5dc0e33d4dd1650d18583774ed42865704a3b796e2a812d30e0c3b82b57ffbf9cb46ca58f6ebd6d10aeade1042a9b293ddb1e8a8b3b6081fbb0de68b829fb304","ssdeep":"192:/WILfCCnxc4AGymAAJZ9TpuJVdV+MbTVAGP0l6qdXfbojbrg5bKeiUQaeai141MO:/znBymAU9FuJVd8qTyGP0lhXDovrgBKE","tlshash":"bbf10382d1a46b1897df93ac63bcf71c673442c0df0116f6bda1ab1b57c36e51aa2710","first_seen":"2025-02-13T18:59:28.70087Z","last_seen":"2026-05-15T20:24:25.205534Z","times_seen":22,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":219,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-social.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-social.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-17e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qG4aq4V3fyYSrETyL2wVCBaO6CzyAv3g2c39Lzv8kE%2BB7IFYQzmJzxdJr6KdcxUuW7U%2FSKEl7y72%2FCj8CaZ5KcRFoa%2FLCUjRJZ4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006536989b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":382,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (382), with no line terminators","md5":"706b896296f3b4f889589ad7a9b50589","sha1":"59aa1d0aa129832829b0804caeca80bb7fb8e16d","sha256":"ec4ca160500199e31ac8c0f09181db77f8aac6692e0806f3f790b381f56ab735","sha512":"1dd85cedd8e97495e0e3114d97eb2324ed2bacd7dc8baf08956c5eb82b1886dd537745c064a999f30352f656489c4d3980069f457fe705ffac42937a84819b74","ssdeep":"","tlshash":"bae092084f9c8ba1569b8484ef34fb5cd32016c2cd5c17a29020571f15b3bb43877ee6","first_seen":"2025-10-23T04:15:57.494148Z","last_seen":"2026-06-03T13:58:45.21233Z","times_seen":129,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template__swiper-bundle.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template__swiper-bundle.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-32d7\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7uuU9lOy41JvZhoi6HOPKQKGCF6lr%2Bgw4Jyfjfw0YCOcLp8EPF6fN%2Fs4JVesbEwd94STRxMUSoA5dJKx%2BrRPn4rlfXEUvD4JbZo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653698bb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13015,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (13015), with no line terminators","md5":"0fe76efaaf0b978ca4b5b42400c2cc15","sha1":"70c0e3d4b33c266c58911c079d0d020e05bf1b11","sha256":"c9d4e1ee1eb1b0e22b6cd5b7876b448e2508ebd9f1e0154dc7dd969d833b43a3","sha512":"0f95103bac3b786444bef44612d7c1e8abbfc13320ef783cf3b4b4b782fb38bf9289ff7c4f71beb918543f2bde58538c85cdf3be7eff1980fd86ea338db6f5bf","ssdeep":"192:hyy4b5Z+SCMaEpx/8nU1CpfNMjeSsedOJ96YmPr+c3At2/c:AXb5Z+cj/MuCpfr89mB","tlshash":"5a42df585340282763274f365b71cbb9d6b444c15bd38a6a91c0ed44d3fa8be236f3e9","first_seen":"2026-01-21T11:33:48.194025Z","last_seen":"2026-01-24T13:55:18.888378Z","times_seen":4,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-link.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-link.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-178\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3DaERjUcBjo1N9T7rcy6LdqBvkOJHipP80pKtqEFS1A%2Fmaz0p%2BvF0%2FZ%2B0NEsRL2W5oonscFJ9xMFi8Ke5bcFBoNXKy8vCXJEnj4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006537992b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":376,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (376), with no line terminators","md5":"c78114b3442f25280acf4ea69d392856","sha1":"cf97ebdac66a38b34c9fd8cea5bbc91406593ca2","sha256":"87a199027d0681e7ea1726f430ad11e15f247c3dd1856cc2eadc12fc3866feb6","sha512":"56a52b141e2368bde9d4637abc246f3dacd0096ccd33807c9fe53a1cc1dfa3ef079d7129604a1cd7f86055eb6c4ddd3725cc402340074a81eb66505ddb4ac62b","ssdeep":"","tlshash":"b6e06140c31263245ce11e34df6cf34e53311ed0c433a647d729d34243971d93556648","first_seen":"2024-01-02T23:04:36Z","last_seen":"2026-06-03T13:58:45.203179Z","times_seen":136,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-tabs.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-tabs.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-1f5e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vf8EAHOE6jP%2F1ervVyf1mK1ORJAuSiBuK7OsO4s%2BkKtLhqaDuu4r5wDRHErbTlya4BPTTVm%2BSLocD0Xz3OSYvslru95ahTQhJZQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c30065399a0b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8030,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8030), with no line terminators","md5":"22a9c8ec63417e7b57b8b806c9ff93eb","sha1":"f8ecf1174758c7e937852a59b6f3063c9595a631","sha256":"5697905840cf0ee02b5004857c044dc3b0ad700be2694c0aa3d8bd3270493d8e","sha512":"ce9aaeb8c659b611f0e40b88ded5041d6bc674c0702b06937bd0c0afb015d3a1e3f018e9a57e6c5bea7b08775aeece6e786d01092396d2b616b3958125682857","ssdeep":"192:vLRODYYwrYMrYIkNurWrErNrPr6rYmvRrYMrYQYMYtr+r6hEvpHFYTwVBkZL32cx:vNODYYwrYMrYIkNurWrErNrPr6rYmvRw","tlshash":"abf10a71d10d2edfaadbb13e7fbdb8490b1853d0be4207b5a5623b26c2c9980857215f","first_seen":"2025-07-03T18:42:44.884925Z","last_seen":"2026-05-16T12:42:51.85714Z","times_seen":24,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":180,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-post.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.098Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-post.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-219c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JkchoyaR82YkKWSJLd4Rssl7%2BRTTUT56qZqi1noKo9XkqvZtr0izOdJT7sd8Dy%2F4mgCBNxyjx7o%2B9oCbh9MhZpRVXYo%2BZvy8blg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653a9b1b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8604,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (8604), with no line terminators","md5":"e1f09ff7030ec8d8f248022cf217092d","sha1":"699092fe8f17233cff96af1eb453da870ec0199d","sha256":"d107d293528ecae64c96df2dc4f2a9d78ebc4203cce490827dac8bf9e43ceb6f","sha512":"9592adda58716b690a3ea88fd1339dcb16fb26dee51e415cabb89670a6ab242b11c0005dd28f1bad20c3726859f6c0f0f6843b57d8c63ba6e6bfaac5bf776d18","ssdeep":"192:QcDslQFKOKRNrKgGNHK4QqdJKuDKgK+GK03lKEOKNpKxvyKSKjK859E/K:QoUXL2zqRu+9uxEXSNje859r","tlshash":"5802ca96829c513cefdab667a376b6cc6f2854c7c4ad06ead51662d147c3bf32032e40","first_seen":"2025-04-16T06:24:35.690281Z","last_seen":"2026-05-15T20:24:25.224939Z","times_seen":32,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-uniswap.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-uniswap.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-2b37\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eWsG%2Ba%2B%2B5lgbVZXGBolChTEi%2BnTD8u5Mh4hL4ii7bMKU%2B%2BQ2vkk5QM6tw3Yeu9m6AgKIi%2B2uJ1bEx%2BKQ4OUckOr6FTYBYMY2TJU%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653f9c8b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11063,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"64116ce7c3e0848de41e537c84b66373","sha1":"4527a49c9998152b6eb767584273731615507f06","sha256":"58c106e52521d1fba7d9dae23c6af5e93138c3a986775468f0e527e9f68edc26","sha512":"5e287e23d9c7e710094016fa3f23e9b139aad9d105735577425b5eb2268353080ddc325b4c7003022697cb47fceb292a4517f94f118cf7febf7a6dac165080c6","ssdeep":"192:gsYJh3sJ7514ENcvjTw7oDkqXQfRyG1Z82vpLEWE8+Z2X1TKnsYQuqLT:Ah8n14EWjk7yXG1+2vpoWE8dlTKnscq","tlshash":"ba3274dc77a853fce501e2e7e71501a9361f64eaa1c346b0c35e2f0978aa56dcd98cc2","first_seen":"2026-01-21T11:33:48.170954Z","last_seen":"2026-01-24T13:55:18.89331Z","times_seen":4,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-boxed.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.044Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-boxed.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-5dd\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SHzpkIjp0OqxmzXoyWvM1c70T4E96m2Oqh9CzsBlM2xRBN%2FTyp620ZeQ0Ts41en5j65zmsglc4US%2BniDwskHFNRfLzlMegv44eo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006537995b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1501,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1501), with no line terminators","md5":"8208ea336a7c7a2f1e63900cfc799294","sha1":"cf705ead95e03e5c221b0e42148ded068b6b59b2","sha256":"0b349d8cc31f6fc7d1ea3e68df1134806b249c6903b1a8ac171d83f4218e4366","sha512":"d8adec22c2fd4b2d2caf60a8c03da37bddb6f8a4981d0027eabc4cd98e1aabf21a3978aa24a579e80a5de3fb4ab75a6c9905ce56bbe1b74b73dee316f375b9a6","ssdeep":"","tlshash":"4c3183a7e89c6c5e45b7e0778276b209fb1cace09ae345f9d195321452c3fd02468bc9","first_seen":"2024-09-19T19:59:33.014805Z","last_seen":"2026-05-16T12:42:51.84754Z","times_seen":32,"resource_available":false,"data":null}},"time_used":204,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":204,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-transitions.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.116Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-transitions.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-426e\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rnHIww8LkhuYJZOWXBZE6yyZyILttVZvhvu%2FXiOk6k%2BeZfqYT1gBwbwpQRhby7xOHTpb55raPDbYykiv2JmQN%2BSC7dlGxpHmCbg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c300653c9b6b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17006,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (17006), with no line terminators","md5":"a45a06ff67cb7b1cd1efda95da023053","sha1":"ba5b43399b7e205aec2d977f9d4f971c17e2f9d1","sha256":"4e9b8cf64cd1c4bf797b96444ba1b1c00f9de64c7c14453167a580081a11169c","sha512":"208cb87a26380b213bf11a9e2f2caf9bced16dbadf6b2625f1fd67f36eef0472f56528dd28c644e6e1c6cb08f33cdf1d2d034fbf686acd460dd18c6a39864e5b","ssdeep":"384:dLBDp0XZ1JwwmQ5conSvLI5LDkNkRiDYyqH4NE+CJjjM46vEnEJShT66po4Dran8:dLBDGXZ19mQ5con2LI5LDkNkRiDYyqHz","tlshash":"d1725de4a3685e3ec9e7576786eafe8c92b848c59f5118ebd4ce0a170b813f01a13754","first_seen":"2024-11-11T23:05:57.136299Z","last_seen":"2026-05-15T20:24:25.206116Z","times_seen":49,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_custom-styles.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.118Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_custom-styles.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-0\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=G3a%2B3ezGbtghdnjM%2BEqtCMgvv5DfwpxJAVb1MYVPh0MjClsoZslQI2Z2gzq2qtzHexG3AGH%2FVtK0uOhVZcD6JLL5WDRW%2FOAOI%2FA%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9c300653d9b8b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":237,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/favicon.png","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:48.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /favicon.png HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:48 GMT\r\ncontent-type: image/png\r\ncontent-length: 36344\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-8df8\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pMu9h7r1Pi1S7igC8YdGMwKB1ZCzYqM0230tQDCpjSb%2BafmI0%2FhWZZTADoeSPPE1%2BDyonDIf1XUtEmkZyAoGDdCunAuriiCvPAU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c30065acab9b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36344,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"1157bf95e6bb662eba9807a8fcd3dcfe","sha1":"1a2423a97cc028d3940a12ddd234369fca4078e1","sha256":"24ad13ccc98a7712677895d27e57516d59178f2db66a4fcdfa6a3959168f3332","sha512":"c9d08932262d813c862df3f8078926d0b94aacc760e81106a8b18d6b467aa9b881f246695689f8b13a8b5d9ac9a961aefe47d6ea739c33c13aec6c32f27358a3","ssdeep":"768:w1YhU6ctynCkVeOhhSJyi0vpGztTXrsvOJrfRnFHrGOprYy:f66WIzeOhhhicGxbrsvOJzRQOV","tlshash":"7af2f1c6c77fb5c10d0e221002d3ed5279b8752f7954ef8862c7dcaba6d4de325a2829","first_seen":"2026-01-21T11:33:48.172711Z","last_seen":"2026-01-24T13:55:18.903311Z","times_seen":4,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":129,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-touch.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-touch.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-349\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DaAuJV1VsMWfFxQZ3I4KKB6ao%2BO4rVr%2FtKHrBtaFRk%2B6ZFot8HuqnvzFlQzIAbYsvYeaJTZlizTPgrMqcORAqIfRK8alKT9iLao%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006537991b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":841,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (841), with no line terminators","md5":"21a444ff8ca0f32872d18aa4a58d2f61","sha1":"cd30b202c3b6b65516f9fb8c52a005a3efa59dae","sha256":"40da6c4c0c680ab7341e15ec84498b759399711b105800e8ab4b43ea5004f820","sha512":"eb2f81042040a2b140c1a8f191a2d0191bc05ae54d4ba37c2f5a7d05501925de3cf5f7722fdc2e99bc5849c25b6fbe07d68d6a7422c70067db8fd7889e02fdad","ssdeep":"","tlshash":"1e01a311b1c5612ab6af20b73b39e3cd272d54c2fd2b4b395195b770c2cb6ed2525e01","first_seen":"2026-01-21T11:33:48.215252Z","last_seen":"2026-01-24T13:55:18.906427Z","times_seen":4,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":211,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Merkl-logo-light-1.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.119Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Merkl-logo-light-1.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-7a7\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YmOD0HcT2KRqm3HrsdHXvzuy5GKGV4Lle8kkCO8iSFQRY4PUyGHDZ7owBJxBl1TG5gOvHG6b6swLSiseLjGBleecysivIvUsndY%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653d9b9b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1959,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a1072bd43ba070a6f6d295370b90b4cc","sha1":"62634664e0dc68e136bbafa615603866f1cbdd9b","sha256":"97ee7f8a383862a4df679363e04750345b99575404f370c693cd6b9ad6dbec28","sha512":"d73e195220b106c3be3ef7a0705fa4112108651a0bfba29f1b533820ac92514e7aa617054afb7c136d2b02dbc8ca76e1a9387460e17243bf29f9cfdebb73b15b","ssdeep":"","tlshash":"774156d823acf1a9a205a7b5fb0725326316f1e2a744e8b8c7d52d23384d17f4888dc0","first_seen":"2026-01-21T11:33:48.167238Z","last_seen":"2026-01-24T13:55:18.90708Z","times_seen":4,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/hand-heart-fill.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /hand-heart-fill.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 267696\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6968b9dd-803\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BK5HLRm23lX4IROzXeU6jah3zygH48eOdGGPouFcfXavTWO4I7xlQGMepS%2BaC3D%2BbEAx4rKKsleug80JwT76jZ90xcGJbOjYNgc%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065449d5b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2051,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9bd56bf1e0e949c2fe2424876727a1f4","sha1":"bc2650f1f479e9e58f7d02ab6bfa58dece62b73c","sha256":"240b57e35a81a631ecca5f088a80b56ec22b6968bf25387d910eddedfe638bb3","sha512":"06e3c06d6ffa79e48416fad75a952b58c0d120cb30df543d55ca3e232f6eb1ddf40e511ca11b8b349d63102700d625c0817d995b7a7e9115ce35311a5ddf619f","ssdeep":"","tlshash":"7741b8e853ecd3d4e405a341dea27472636f3cfe2a66c2758f943aa4d70946d5cd1180","first_seen":"2026-01-21T11:33:48.249557Z","last_seen":"2026-01-24T13:55:18.907656Z","times_seen":4,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/merkl-2025-review.jpg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /merkl-2025-review.jpg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 17803\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-458b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EazmCMVDVNgCp3v3u5me1pBv%2Bn7muRUurwZcaFrwCMmpnj2vwABDHSi0C4Hn7EZsr9nBYyDivnc9mIokAB5NpAU7SWNUSGTID%2Bo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c3006582a7cb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17803,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x337, components 3","md5":"6b486ddf48cba1dc48034de75cb6000f","sha1":"5d5a14487b134ad1707cc19ab03fbfbd67f3a9f7","sha256":"35e75c5a3d07a33c1a61db6e986f59ae7cc7be9587311e0c07f84e9470379f64","sha512":"faf62f65448aff5a8599f772601cd16523c5f83cae34eb73b47670e113b910974d683ded6a244369f4b12801209e09a3089a89c69395c663c1a619226b0d87e4","ssdeep":"384:4VvIT7KYmG9SL29pJ+GXEdBXkvqDl5ihJ/jQFI2Y889zy:MI/gG9SL2XJ+JZDl5CJ/jQrKNy","tlshash":"5a82cf7a6eaf5c8f80d68deb807dc3ad2be8d14335e052c56f91680fd5741a786b40d4","first_seen":"2026-01-21T11:33:48.224758Z","last_seen":"2026-01-24T13:55:18.908202Z","times_seen":4,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":144,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/Merkl-wrapped-DeFi-Recap-1.jpg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /Merkl-wrapped-DeFi-Recap-1.jpg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 21491\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-53f3\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fCufgAp49R%2Bw7Jyw4hQGNHNAo23uooak3%2Bq2c99ShDocq6Dd03MEzAoYI3pHufjBD6qGhBBkvBT9eEEZKchrKfiR2PDN7soh3cI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c3006583a7fb4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21491,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x337, components 3","md5":"a7ebdcfd01649791afd041c9ed073f52","sha1":"34e4370914de323cc49580043c1163b7e3d2bd95","sha256":"c4c36c84762ee09fd3d4d3952a53549e9243ec7b7494864c78bfaeff13e1bf7a","sha512":"6d68c4be5389bdc16a85f5a0698d18a706318167df1649bd83aa6e2ff34d33e5a03659183356ec7e17af9cc336f55f29f40a66343b0602b0db8be9497f5c9003","ssdeep":"384:XiYccIdw0mVnESxW+QOuT/I1v2zynBCg3f+jD+Q+b3iWQRQA37S56kPby7jruor7:ykoO7ZQOurZW0gPsD+dLiWQRZ7ScSo0K","tlshash":"60a2d064bf333ef444520fbd25ac1e5b817ee4b50765da6e06c87634bcb36a69242204","first_seen":"2026-01-21T11:33:48.199517Z","last_seen":"2026-01-24T13:55:18.908769Z","times_seen":4,"resource_available":false,"data":null}},"time_used":296,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":293,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/secureproxy?e=jscdn/getFile","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:48.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://getmerkl.app/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://getmerkl.app\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"eo2upuit3j1bi7kc0oxl\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:48 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ctuhaPujKCCWhuDPKPR0eIBRkXazb1yBx%2BSfAyN7k7iI9xfkeBJVX8FexKjmGci7NmGtNpXja5mwwqmptYVEaKFZQmeMRP%2BBF%2F7O6E3F%2B2mzlQ%3D%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\npriority: u=4,i=?0\r\ncf-ray: 9c30065a2ab4b4eb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5281574,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"1fe00c493bcd896235c239dcaf303f91","sha1":"7d28c934a8a7aab08d24ccf93173838c342593e0","sha256":"c6cded67f6a5e9bb326cb7f280b7520e69b63afe588fd766a0e4e27e2752e6ba","sha512":"c47f527e8b6e829dd031d89ab8e5b8066ef8b6df99d5e2a9dd9a67e4557b267e5dd93ddfffeb3af4a3c3f9313522f4f25b65ae6052ff40511b0568370bfa1153","ssdeep":"24576:F/OvYiQUmD/WMmOHrA2vjY8ASERC4iTdSUr:F/O7WxrAojYtdR+5r","tlshash":"ff2512ebe066b0d32b219878b5d12dde799f90ac65c247f72854ec5462ca03ec4dcbd2","first_seen":"2026-01-24T13:41:45.971379Z","last_seen":"2026-01-24T13:55:20.177934Z","times_seen":6,"resource_available":false,"data":null}},"time_used":760,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":306,"receive":454,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-mockup.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-mockup.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-9eb\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=P3glLN%2BH6VJ7N6cwSL6bmsFP4wCpUgiovV8KdMwT2HEIGv2kJxH2svfnkMHk8Uvg5zAe4sC1nin5TJjJjJgiK5gGudWiOXZswBE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006538999b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2539,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2539), with no line terminators","md5":"2dde5abeae1791c484bdcf624580c5fe","sha1":"315c759043ade3c2b01c9f94ef5466866dc08ea9","sha256":"28e698a9e93ea55995efe30792c23608284daec499d7746f9b9dce5a48b42eea","sha512":"ad1adc960c8440829040a970db67b06437e2c415e3945fb81a678e18ec1cabadc098a91b9dc16ae6f21a13295b3897a32b1bab16e417eb18bfc0aa23df03b9a1","ssdeep":"","tlshash":"c751ee2da1fc181fd7d24ab7f1b3f1985f2340c952428397c8167ee689a56b872612cf","first_seen":"2023-12-26T23:14:00Z","last_seen":"2026-06-03T13:58:45.275231Z","times_seen":64,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-euler.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-euler.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-887\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=89QJnTfJ9vxV%2F0IdOuRno7nAljIQZsNBorBGqoWhXMor30qb0Xfmh1Uto5X5jEFuKo0jfqL%2BwBhVzFKL4totvuC6Xj4ye1hHLgg%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653f9c7b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2183,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"181ebfa82423f03ffa282948d5f0f99d","sha1":"81b265dd14ea9e57f367727bdeef3aef8cc6f983","sha256":"47c84ca80b3d259577c196a7a703c1fab06357bd1119ec3f5daca40250d68b0f","sha512":"4abc73dae715c25d54ef197c0148d83568e1b188e9237c8e5b6712cd0efd38022d98443f5304131d7aa39c798247ca5f62c0d81834ab13ee1bc63e8bfce95727","ssdeep":"","tlshash":"464175ec71c844e4e905d9d1f60615d8376fd4feee964a24c3081b0a3f6e86ce9616c0","first_seen":"2026-01-21T11:33:48.256841Z","last_seen":"2026-01-24T13:55:18.910539Z","times_seen":4,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_child.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:46.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_child.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-0\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=41jp6VVav3GNZv%2B9Qdn7lv%2F2%2FUPx9u4jgBhlFsBUbtZLwxCcQ1ajFjXDZFxcNz1tMmVlXoByE2M8CXfa0EOrSXBGuSbgftCu9BA%3D\"}]}\r\npriority: u=2,i=?0\r\ncf-ray: 9c3006535986b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/css","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T12:34:25.437902Z","times_seen":16239334,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-simple.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-simple.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-11ff\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eHqjNHZL8onsw7ueRG6ivN5spDw9WIITqq%2BfSHM3seppYLpwt7NYqkdXh9JJscRCN8k2Lq7%2B9FUQBJkClp4m%2BgglVCbASxpu%2BNw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006537994b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4607,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4607), with no line terminators","md5":"cb2861cc0ecbb9336a17d541d0ee18a1","sha1":"669f27cdba9792fb8e458065f0470fc03fcf97ba","sha256":"80adb3eee76a915ca6232e70ed40de92f06131a752c6e973a9bf5bc5550e2c89","sha512":"d2deeeb14bd6db84cb99ca9dfada912736424c1f5492353e1543d482f18c37ac8239a65f1b15daad2ede35efd31879eea832ef84e17b1d8cae471219a504a224","ssdeep":"48:DivvKQBcWVwdxKMjEQLpQbcwwJ14OQo9ZvgK4utUpZiivqwwfRzHX:Ov5P45oO5vIgOvqF","tlshash":"b69135468a1f592ef3fef823e6ebb178971c95c3d6324192f72d536242827d711a260c","first_seen":"2024-05-22T23:24:26Z","last_seen":"2026-01-24T13:55:18.911103Z","times_seen":13,"resource_available":false,"data":null}},"time_used":222,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":221,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/template_pwr-sec-cta.min.css","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /template_pwr-sec-cta.min.css HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:46 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: W/\"6968b9dd-b13\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 267696\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TWE5Ik3S8gJ8voZ2Vlk5U04HPWYz7IbcFAAU5AlDWSC5GQXdAd%2FJSG%2BJY7Uwh3y5a3VoKmcmSYNASUHYcQAQTh34bS9eyuEbZ4A%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c3006538997b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2835,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (2835), with no line terminators","md5":"18e99222754a8c25decc9e689850bfbe","sha1":"e264194fea225d62fefa176b3407ceea2aad4064","sha256":"1da7bc42011399132c7c6fd5cb1dafeaf2f2a4c6ea7a4ed64e2eaccccccf5d91","sha512":"694c4c5cad740d7188dc5dd1c5d9c961b7df61f40abe7352957fdfd80246b7e3b90b552f5b00313e649919f8c04a132f0f3e70be66b966bce43220d32b11403d","ssdeep":"","tlshash":"fd51ba80e2bddd6fa0f5557b3af8b5486fd198e04a03d2e6c4b4734781ca6acc1192cb","first_seen":"2024-09-08T03:12:38Z","last_seen":"2026-06-03T13:58:45.289736Z","times_seen":150,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/logo-grid-7.svg","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /logo-grid-7.svg HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"6968b9dd-1128\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xSBZZwvZtZpJRtR9N4ActbBzZU87BDXWpy7Fbq2bEp28cVtmn1NT%2Fl65hdukrHWKRlThB9SIT0RBGFYnTT3jw0PfU1eOVSqp6wk%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c300653e9c4b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4392,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"420fd6fef28c19e8ea846294a08b12a1","sha1":"ef60efe3d75f430599a06194199521e1ff87388e","sha256":"5dc91ffb1bd12b283877eaab74d8bc5bda17a0e98c4e3aa3802a5e77c0d71856","sha512":"c5b633caae58b93e4ce6a20d4909bb6f02c2b8950c09376279c9cf00a7da6690c7179eb6bf76333aefb221f003ccb507b4a32daae024871a43429ede0a123a0b","ssdeep":"96:IJa2cxt0GbhukJAvEqFLmYu6krFG9LZBk8HHFcVSnI:IJU0udqFJuRgppISnI","tlshash":"a59185dcb31416e1ce83d7e7fb44209a560fa4f5fd524991cb446b0a34638e9ec84dd6","first_seen":"2026-01-21T11:33:48.157421Z","last_seen":"2026-01-24T13:55:18.912187Z","times_seen":4,"resource_available":false,"data":null}},"time_used":243,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":242,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"getmerkl.app/SEC%20CTA%20%E2%80%93%20Vertical%20%E2%80%93%20Image%20Background.png","fqdn":"getmerkl.app","domain":"getmerkl.app","tld":""},"ip":{"addr":"172.67.144.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://getmerkl.app/","date":"2026-01-24T13:54:47.718Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"getmerkl.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 15 Jan 2026 09:00:05 GMT","end":"Wed, 15 Apr 2026 09:58:46 GMT"},"fingerprint":{"sha1":"5B:FB:52:FD:99:EA:B1:9D:61:64:EF:78:86:8C:96:F9:54:BA:A1:2D","sha256":"5C:1F:07:24:BE:27:BA:9B:C0:D3:75:28:76:B7:B9:A1:91:F1:48:51:CE:37:4D:E2:53:7F:F7:2C:7C:0C:62:0D"}}},"request":{"raw":"GET /SEC%20CTA%20%E2%80%93%20Vertical%20%E2%80%93%20Image%20Background.png HTTP/1.1\r\nHost: getmerkl.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://getmerkl.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 24 Jan 2026 13:54:47 GMT\r\ncontent-type: image/png\r\ncontent-length: 1839743\r\ncast-mode: default\r\nlast-modified: Thu, 15 Jan 2026 09:56:45 GMT\r\netag: \"6968b9dd-1c127f\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 267697\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7trNiXseMbf34y0eZo8tznKrDkT9thDQleBeZBs6r9VF2w7eFPBO6hF9tmLo79s9FaHkOFxj19EKjW9eW1PUmavTATYf3GSHplE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c3006583a82b4eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1839743,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2881 x 692, 8-bit/color RGBA, non-interlaced","md5":"359f0f9bffb3269306aa4769979e24e8","sha1":"0df8394883193e509506cb90ee416f15f0970272","sha256":"55b8ee7c94d21892de442bb0809df5df2e1f8698dad9d84f6b2d788111ebb745","sha512":"65bb4ca8e5a03e46258fbaf304ac88fa9c2d710f84a0b878523558e8e2debd706fb74dac18b0c27b058abba3fcd8ff09f7e81787422c070b2c5e234de54715d8","ssdeep":"24576:30srEYHdpmgvVc0bxpaAVk8Nm481Pv8JQNJncXdzteN/i:EU9pxV/bxp9jG8QNJctz0Ji","tlshash":"e425336db6e85442f38a456d3a4369147808d834b06fc7caf8d06e33af7497ae9911cf","first_seen":"2026-01-21T11:33:48.251154Z","last_seen":"2026-01-24T13:55:18.912728Z","times_seen":4,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":276,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"getmerkl.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}