{"report_id":"a9ceb054-c099-4117-8674-d758c631d2bd","version":6,"status":"done","tags":[],"date":"2026-01-24T13:47:01Z","url":{"schema":"https","addr":"depinsim.xyz","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"172.67.212.3","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"depinsim.xyz/","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"title":"Depinsim","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"depinsim.xyz","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"172.67.212.3","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-28T13:47:01Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"depinsim.xyz","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-05","domain_rank":0,"first_seen":"2026-01-24T13:47:02.390006Z","last_seen":"2026-01-24T13:47:02.390006Z","alert_count":6,"request_count":6,"received_data":5000924,"sent_data":2526,"comment":"","tags":null,"fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"depinsim.xyz/svelte.js","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"73b754259b9a1f0e2f8287b9270a47f8","sha1":"107d83b5dd73c4f8dd7dcf03a843ae47e6df6646","sha256":"3bdef486b926ad783598b399ad5f4ef212ed009a7a45614694dab414a4c03fc3","sha512":"324b392322111634f4c323c6ffa52b9c60830442ce44b62d457e7949d4e55cbe4ad37ad2288af43d0a0f7ff149e19a1969181668264d32f9b3e92f34894a0ce5","ssdeep":"1536:EWnLJMZWnLJM0jK0QfFe8G3Nbbp1TG+p2H:fNwFe8G3NXDTG+p2H","tlshash":"c253b6d4991bd0e98e1121ddd473e829e4640ea3cdacf1a3ea3cded1791ef21848717a","size":61857,"data":"","first_seen":"2025-12-28T18:46:24.959794Z","last_seen":"2026-02-05T13:17:03.368533Z","times_seen":14,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"depinsim.xyz/","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-24T13:46:32.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:32 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\ncast-mode: default\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2592000\r\nlast-modified: Mon, 05 Jan 2026 11:31:52 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vbMuGIfwhiTJWRb4Kilgb%2Fa%2BaWCbu1eVa2PeJE5oqHFaAfJKgxUKIk6LrFtIDxkT4PITcvCYjNv2yxnSXYvKHEZFLOmhaEZywRc%3D\"}]}\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9c2ffa412e3d56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"React","description":"React is an open-source JavaScript library for building user interfaces or UI components.","website":"https://reactjs.org","common_platform_enumeration":"cpe:2.3:a:facebook:react:*:*:*:*:*:*:*:*","icon":"React.svg","categories":["JavaScript frameworks"]}],"data":{"size":315745,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (28527)","md5":"652af65565eed384e9e44eaee7b63ef0","sha1":"e6063b0e2097da4a801dec50c21e1debb1df6979","sha256":"4dd68383dabc1774b933228942499539bb7e88317e63e5e7b1082a66e9ace064","sha512":"63b8ce2b528b368a9b48a5241099e0ea59a6f262d249b957cd727f9d432bd3a6e8a197d852ae3a0b5d9822c659e23219b51a18782d8088d9d09ae7b362b4b1f1","ssdeep":"6144:kp4GGc0m/QMiAgmTv4j5HpNlWp6U4+3eVISHirN3FV10PnDLH:24GBTcH43FIDLH","tlshash":"b664d632a986acd80d770d2184903fb08c68544b5d79c999b68cc2e6efdd4e8df6d87c","first_seen":"2026-01-24T13:47:05.778115Z","last_seen":"2026-01-24T13:47:06.04277Z","times_seen":2,"resource_available":false,"data":null}},"time_used":482,"timings":{"blocked":73,"dns":51,"connect":1,"send":0,"wait":329,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"depinsim.xyz/svelte.js","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://depinsim.xyz/","date":"2026-01-24T13:46:33.344Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"GET /svelte.js HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:33 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\ncast-mode: default\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2592000\r\nlast-modified: Mon, 05 Jan 2026 11:31:52 GMT\r\netag: W/\"f1a1-19b8ded8765\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F9dHwYfPOZOeO3apIwdWfwP8m3ZQnSRyzNyeVRHuCqD%2Bw1UEdM0RrCvXAZJwMDnVjjvJsHt3pDtDUzstsn7JazmmZsgMP5CvbZE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c2ffa466b990b51-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":61857,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (61857), with no line terminators","md5":"73b754259b9a1f0e2f8287b9270a47f8","sha1":"107d83b5dd73c4f8dd7dcf03a843ae47e6df6646","sha256":"3bdef486b926ad783598b399ad5f4ef212ed009a7a45614694dab414a4c03fc3","sha512":"324b392322111634f4c323c6ffa52b9c60830442ce44b62d457e7949d4e55cbe4ad37ad2288af43d0a0f7ff149e19a1969181668264d32f9b3e92f34894a0ce5","ssdeep":"1536:EWnLJMZWnLJM0jK0QfFe8G3Nbbp1TG+p2H:fNwFe8G3NXDTG+p2H","tlshash":"c253b6d4991bd0e98e1121ddd473e829e4640ea3cdacf1a3ea3cded1791ef21848717a","first_seen":"2025-12-28T18:46:24.959794Z","last_seen":"2026-02-05T13:17:03.368533Z","times_seen":14,"resource_available":true,"data":null}},"time_used":377,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":374,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"depinsim.xyz/dlogo-DVDJme9e.png","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://depinsim.xyz/","date":"2026-01-24T13:46:33.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"GET /dlogo-DVDJme9e.png HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:33 GMT\r\ncontent-type: image/png\r\ncontent-length: 38974\r\nserver: cloudflare\r\ncast-mode: default\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncache-control: public, max-age=2592000\r\nlast-modified: Mon, 05 Jan 2026 11:31:52 GMT\r\netag: W/\"983e-19b8ded8769\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c7UfH8D%2B3bhO3Wh8LNan638Gk%2FpgXys1nincfySpQexGPqPM5Nq4g8FfIunGAjUachlp7P4BAPSnCqB81g3wRkf%2Bd3y1UCznulk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c2ffa466b9a0b51-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38974,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1191 x 234, 8-bit/color RGBA, non-interlaced","md5":"a3269fc4a0fdd75d7711663d6cc63bf1","sha1":"10b983e91d223204b5549f45ef3f02fe9c4d3616","sha256":"e859f81a3032b7d8aa69a55abd2c7b2e274da12dc8afaf15b27b4d9669f23829","sha512":"775c62f784403fb26e063d3cbc88b22e290ae894d6dbf7c3799510ee69fa78c8cb2f7788b666bf0d93505e9262251b5fba83c25ed186c721099e10b3eb7bafeb","ssdeep":"768:Ex0Tmon9vRTaFeEzqKSJYYvDSZ0Z5Vj+j0+iIjkQYMtLiJRD8CB:Ex0Tt95nEmKSOYvD20ZXj+IRMsxJRQg","tlshash":"6d03d0d51230ee400f2327b3a1c42fab489752bea7e11c7af61d8d8c91aee0565894d7","first_seen":"2026-01-24T13:47:05.783013Z","last_seen":"2026-01-24T13:47:06.044167Z","times_seen":2,"resource_available":false,"data":null}},"time_used":404,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":346,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"depinsim.xyz/bg.png","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://depinsim.xyz/","date":"2026-01-24T13:46:34.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"GET /bg.png HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 33242\r\nserver: cloudflare\r\ncast-mode: default\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncache-control: public, max-age=2592000\r\nlast-modified: Mon, 05 Jan 2026 11:31:52 GMT\r\netag: W/\"81da-19b8ded8765\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M9Th466RXa%2By4NLR9jKVzf89uNpW3y0gT7SfQti4YnZgYLYjpnELe6JOKQwLx3BIgJUl7z%2FSNtY6EQ4Beshp1Pv7gBDfTgTnNAs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c2ffa4a8eab0b51-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33242,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1896 x 2964, 8-bit/color RGBA, non-interlaced","md5":"b2634fd5f16f29d113e8e7b47cfb16ad","sha1":"72f9057989fbb0020a8009fe8fa4e4b4ae3cc09f","sha256":"ced27f86ea6e8cdfe8d0bd65f6fa0cce1a53891910341964f61bdfded7b93b5f","sha512":"5c9014ef92dbdb98719bb31e7ca0d074e805b418f77e8eb532077b8eee5169d7c385541c28c44a79c15b99d8fa3490ea61235b2b86f406a71062b51c3f129911","ssdeep":"96:T/iqJ1nVkHgzbyU5MvJuSRD5RWVYu5P50319BPOpImGv9OoR7sx:T/7JdDi4MFD58Ww0319BPOimGll+","tlshash":"0ee25a75a950e029d2751c3468a67fde7dbb08fe84ac210c0befffad170b9e456a5408","first_seen":"2026-01-24T13:47:05.769593Z","last_seen":"2026-01-24T13:47:06.044871Z","times_seen":2,"resource_available":false,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":337,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"depinsim.xyz/secureproxy?e=jscdn/getFile","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://depinsim.xyz/","date":"2026-01-24T13:46:34.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://depinsim.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"c8czf4te8mrk1thnluyc\"}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:34 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m%2FNLqovu20ZHMI1sSQvWjuNNdi3APt9hRSXqdwqpMieRYuJIWV8FQWHLyzUIV63p3s%2FWxULQVS0e4fMJMjXyW2vV6l2MG8HlLv8rGc9fuP9ElQ%3D%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\npriority: u=4,i=?0\r\ncf-ray: 9c2ffa4acedf0b51-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4541846,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6a549ce28fcd683b1875324663e6a6c9","sha1":"a216bc19847164cbd9032f74914cae1884843b3d","sha256":"e1855e58111e89dbabc8f29c3be97905c8df83bdb105e281541f66b7a5d6c8be","sha512":"dcf2e6d7f959be48f474c354d14937ca235e1b51eb9d5aa2ef9da1965fd8de74d56117c48adb7cba2fde0931e77d15ecf3a19c6595447216045493df669f7cff","ssdeep":"24576:dJh+mVcl15N29Dz3taoB294uaQb+4Kkk7V1/iLqBm:vkmmlhi/3zB2KjQH783iLmm","tlshash":"542523f9fc52a0c1bda16d747ad27e5daea850cd5a91cf3738d8ec10b09127802ed9d2","first_seen":"2026-01-24T13:31:44.535753Z","last_seen":"2026-01-24T13:47:06.045546Z","times_seen":4,"resource_available":false,"data":null}},"time_used":858,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":327,"receive":531,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"depinsim.xyz/logo.png","fqdn":"depinsim.xyz","domain":"depinsim.xyz","tld":"xyz"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://depinsim.xyz/","date":"2026-01-24T13:46:34.245Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"depinsim.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 09:42:27 GMT","end":"Sun, 05 Apr 2026 10:39:59 GMT"},"fingerprint":{"sha1":"E6:AC:E0:F4:B4:AA:FC:47:64:1F:80:3C:C4:F0:9F:88:B0:0D:84:BC","sha256":"9A:34:2C:E8:9A:36:5E:B1:8D:84:DA:6D:E5:40:BF:DD:6D:8B:44:35:52:65:C5:90:8B:5A:83:30:05:03:75:95"}}},"request":{"raw":"GET /logo.png HTTP/1.1\r\nHost: depinsim.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 24 Jan 2026 13:46:34 GMT\r\ncontent-type: image/png\r\ncontent-length: 3279\r\nserver: cloudflare\r\ncast-mode: default\r\nx-powered-by: Express\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncache-control: public, max-age=2592000\r\nlast-modified: Mon, 05 Jan 2026 11:31:52 GMT\r\netag: W/\"ccf-19b8ded8761\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jSB0COx53%2Forj7pACnSL59zxpG1KVPUMFHMn0KplGy9cQF%2B%2BZqo%2BT%2FpcO1qX2r3Kd4AZOLqo7j%2B9xb6uJ8e2zZ3MSFOXj4S39ek%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c2ffa4c08070b51-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]}],"data":{"size":3279,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 56 x 56, 8-bit/color RGBA, non-interlaced","md5":"ce4b2bb3dbbcb01145c6f210cabb1666","sha1":"abf4c31aa8fd289d4e28570dcfeb104feb4a0cbb","sha256":"ab8515cb7e9d535b2908581090231d8dd2c4624cd483081c0337826291db056d","sha512":"52af206a1008b11a8857ef8ad17a19e3a5cc1c9f4a64cb6e4dfbfccd19a4b1ccf5dd22dc155ef06dfd21e738c727de4d3100315011bc4d91cc21665676dd1774","ssdeep":"","tlshash":"3b615c989634b814c5f8ccfa0963f177e41f3179a1231ce95e9a188634b39d17bbb462","first_seen":"2026-01-24T13:47:05.77557Z","last_seen":"2026-01-24T13:47:06.046209Z","times_seen":2,"resource_available":false,"data":null}},"time_used":347,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":347,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-24","alert":"Sinkholed","trigger":"depinsim.xyz","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}