{"report_id":"b127b991-232f-4473-b8bd-f9cafae267e0","version":6,"status":"done","tags":[],"date":"2026-03-27T13:49:54Z","url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"title":"Snorter Token Crypto Trading Bot | Best Crypto Presale","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-01T13:49:54Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"1.1.1.1","ip":{"addr":"1.1.1.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2012-05-30T07:40:31Z","last_seen":"2019-03-28T08:40:04Z","alert_count":0,"request_count":1,"received_data":533,"sent_data":436,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-03-22T22:34:23.857339Z","alert_count":0,"request_count":1,"received_data":760963,"sent_data":443,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"snorter.claims","ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-27T13:49:59.224302Z","last_seen":"2026-03-27T13:49:59.224302Z","alert_count":57,"request_count":57,"received_data":8362965,"sent_data":25213,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"snorter.claims/main.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a474335c30edf86f39663a29c0beb510","sha1":"8c30798d0904daf97703f7b02aabcef3ff147982","sha256":"02df59cadad61522c624044e7a9a75ea65c966f74ac00878b54d13fbffb714bd","sha512":"dfee6bbcd507ccdb0a1631d78e8fbb8e5e737b2c5851654d7f2d546ad5e08933343b4a00de2775e8d7777f3cdaa5e8298a74ac1824820c27c7d6b60ba293e44e","ssdeep":"1536:Z5pMRw3C2FJEEAnn0zEyctYaxBOSt0coe7SCHjFA7TWG/EPmTcOwXc:Z56Q8Y6txBn2CSCHK7KGseT2c","tlshash":"b94477cb7e8ab84aca817d01946e0ec97bf0056cf27508ae4745b7bd74561e7c2e2dc2","size":255409,"data":"","first_seen":"2025-10-29T01:39:59.261218Z","last_seen":"2026-03-27T13:50:06.657459Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"Function","is_inline":false,"md5":"58124c3edf137133e1c1e10dc2c59ae6","sha1":"df8785331f82ecec2403a32b8529d43837a5cb80","sha256":"2650bc3c35a4cd43854d29230cc9a1b84d06b4fc8e32200de1689bf037c3f8fa","sha512":"042f8dc6fa6adab5099c6b3b3ea6fbb1c7e249216b30e9d38d0286e77ad3569ad1aed3c6a865e8516947faf06579ef47a9e8e515cee4ecc7382f9ee379e41b2f","ssdeep":"1536:JyHcQzOSpeoxVoAdkhYq1z+EtgQsmf4+7FFs7Usgz2yOAXU:AHPemmhFzP+k4+7UwsgCsU","tlshash":"613472cb7e8ab84aca817d05945e4ec9bbf0056cf27108ae17457bbcb4561d7c2e2dc2","size":251204,"data":"","first_seen":"2025-10-29T01:39:59.303109Z","last_seen":"2026-03-27T13:50:06.703982Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/modals.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ecbc5043a1e25f2bd5bbd6e3c3be49f0","sha1":"d66eb695679871221c52958d94029c6358b7613d","sha256":"6d0c2c8d032982e9a86a1bed14f709911058b6b693abb5d46335a0106c12c411","sha512":"38b9aedf74859ade1e5445634b338f560c4d0520ab126de202ad98942bc0f34e740b93c7123a3bc53dcdded31944c174ad06bf1ca006e137cb4e06a949e86088","ssdeep":"768:ywjvL/eQ0ae2vBKRDpoKvTQv4n59+Y44U7kFlaoGHv5:ywz2n59J4inM5","tlshash":"943311071cbe31361daf0fa3b7cc1a1b4e2eb351e612aaee71bd1446438bd74c5a5618","size":52833,"data":"","first_seen":"2025-07-20T10:23:41.460008Z","last_seen":"2026-04-13T01:12:09.502384Z","times_seen":719,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/fpbundle.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1c59909ad8d56060bf239a34a275da3d","sha1":"1164057a0631f6b5dd80387a1c3a9e332fb00bb4","sha256":"126a8b465ef8734b4d7a289781e0535cd283ccf24394e08c44f23ae300be3a5a","sha512":"39d33737c908bf2a1430f157990f931a0644471a0cf20de61721596e1330fe5867108db7e47d1869576710a72f886ef42e7492a2c0ed05fde2644f6d338e3eac","ssdeep":"768:v8UXI0Nc5VArhXDh1bnUsAq1++umYUT15+2gT/RcKrNcFV3BT/Vo:vN/NcnArV7f5+9cxT6","tlshash":"a413c7a873c67139a217b0719dcf4845b67d6d182289884dca2ec4a4b879d3dc77ecec","size":45503,"data":"","first_seen":"2025-07-11T11:18:53.943693Z","last_seen":"2026-04-13T01:12:09.504298Z","times_seen":717,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/ethers@5.7.2/dist/ethers.umd.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"71f8c498e792c6179d4e2840228f777a","sha1":"b651545587f6257345dc3de9ddaa444b10dedf3e","sha256":"a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73","sha512":"14371563e83bbdce425c035bad34a0d4ae6a2f2ae20ac183602134d8b8b5b5711874d40fbcb3c7344fab4f63237a2f0dedf65b7b458b870dbb8f64ab191a5d32","ssdeep":"12288:TfamYTKkkAJs8P+H8Xb2F/nNuwEYtnob6qQr:TfjkhPaNnN9EYtwo","tlshash":"35f43b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","size":760171,"data":"","first_seen":"2023-03-13T00:48:53Z","last_seen":"2026-04-18T15:07:50.749762Z","times_seen":3167,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/bundle.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"29681f25e1e25a870bd6656b8d48646f","sha1":"7b8c8d1c3af639b6ec50c84660a9e9f0a3a2d3a3","sha256":"969be4f64afdeaca0568779c3b0f7291bc9a7185cc983a5104fbd90e4f901039","sha512":"69c94d52b83c5cfc9b4d86e042cf6b99ab9d00c1b9f417ed35f789a41b2d21a92606bef9e1a7a02e64622e31feecb9cdb451ed23f8fa7a69392a0575944867e9","ssdeep":"49152:LRIMXDbdUW4HlHZg+dY3yBgS6cUKZJNrl4G1SE0BuuJpxHiRo6r3XOWxYrowVpaz:Qg+wyBgSxUKZTRbUajO9U7","tlshash":"abc56d907395a46c03b352d458771101f339684aa40d80ecf7ecd9e7afb998a897bf39","size":2510372,"data":"","first_seen":"2025-07-20T10:23:41.470184Z","last_seen":"2026-04-13T01:12:09.519577Z","times_seen":685,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"snorter.claims/body_desktop.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /body_desktop.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 20642\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-50a2\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":20642,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"effc5065b6119746321b48a1e8b7b2d9","sha1":"994bdb06527ebe7074ca2b8390d6ffae6785e39b","sha256":"3658fc58cd11d9fd2fc6de15f3cc897f22348263ba6e8ee7826aa335c99745e7","sha512":"5e88d38c1a04e7c7254d5a79de80f809a0a2293aa93c45bb04eb60677b741df350fb23a90114bc785c6acc932c8bfec2ecb92fa1e0f5e6bb5c8f6400dd68bb92","ssdeep":"384:HOIvyKDPeXBaRu0f2wGgGYzQCWOz6dMLrJI2IZy4fex9:HOIvdPo8RzOwhGYzQCWOedMLrJ8Zy4fc","tlshash":"7e923eac63781cecb9d08bd5ef15b1b8e02642b75814410cc2799b7e2214d9efa3b9cd","first_seen":"2025-06-02T14:09:36.123073Z","last_seen":"2026-03-27T13:50:06.64399Z","times_seen":22,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/styles-4KCUWMZ5.css","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.227Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /styles-4KCUWMZ5.css HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: text/css\r\nContent-Length: 1054719\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1017ff\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1054719,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"bdd40146a21e38ba0f99d3d92da4665a","sha1":"64d4395e5e2d12d3e422dc2ae857308dbcc1fdb4","sha256":"c80597b514de4772f8b405657623d5607d623c3cdf7e84aaa3b8bea7eb23e486","sha512":"b1112911c11beb053ad3209212c67dc7ed96bc15e483db4c5ea2a8fd639496d10cab16674e5b61114fb0d9f50f4372c86a68cd8d92ff5280a2e07014bcbe3359","ssdeep":"6144:dyMny90fh3GhiYxhpz600I4TlpzJd1xNTTzBTwRfWhx9zEiCH1WjDS9nfjoz:dy5hiYxSlpzJd1T3pz","tlshash":"3c253ddff0c5323c9a7a9812bcd47a7ca83fd3697b134b89a11223664b7a6d7803151d","first_seen":"2025-11-17T23:19:36.941821Z","last_seen":"2026-03-27T13:50:06.645501Z","times_seen":2,"resource_available":false,"data":null}},"time_used":909,"timings":{"blocked":186,"dns":1,"connect":36,"send":0,"wait":145,"receive":388,"ssl":151},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/audit_2.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /audit_2.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 3768\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-eb8\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3768,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e55478356a5fdbdb316190c74f8777b1","sha1":"ba99f80f341077bff0beee0020113050f275143a","sha256":"c49d65d0781d55b1c9ef7b8091e537d37534777ae52d60722807d50730dc8bc4","sha512":"f3a4c4ee2e7506ff6a804ca5ac56b0d780d4e61408c25c7ede68c7f3bfaf6072e5aae849bf99e57ac602b1015b5a926264fa0a00adc5e668362e877663aa5b0f","ssdeep":"","tlshash":"7e71b6e2f3d6b2d0d54693f1ab26b871db9f24f22710c0884ba49da59e8445f885dcc7","first_seen":"2025-06-02T14:09:36.107185Z","last_seen":"2026-03-27T13:50:06.649103Z","times_seen":23,"resource_available":false,"data":null}},"time_used":916,"timings":{"blocked":823,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/features_menu.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.286Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /features_menu.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/webp\r\nContent-Length: 24482\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-5fa2\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":24482,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ce192a7c3c16c86132f64c030d8ddb8b","sha1":"759d5f45a1076fb42f71db16ae60a973bf7037ea","sha256":"61b6a02786cd353570b6a37fecc568b232decea19b73cf1123da5b342da18455","sha512":"6301d81627d036d387de47bb14cb70a946b4fcc7c4e0ed5b2137b7b5e9cb4474e93b23d6f2ec7b1848b3fd4bfd7ab846f6bd25010d8b9c1988230a4f4461c9e9","ssdeep":"384:x6gkeVdtVbuYBbRo2OSpcw3jz/GnG/ChkkohjvdNWZGm7MfZklNh9vg2lskB:xxVT5ZBtESpcw2nwWkkuYxYf+flB","tlshash":"f8b2e1a97169bdbdaf2b90b8a38d7c48f25f214b036c8710a01471156ef96461c92af5","first_seen":"2025-08-22T21:03:50.458844Z","last_seen":"2026-03-27T13:50:06.650524Z","times_seen":13,"resource_available":false,"data":null}},"time_used":1490,"timings":{"blocked":661,"dns":1,"connect":33,"send":0,"wait":123,"receive":30,"ssl":154},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/footer_bg.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /footer_bg.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 35432\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-8a68\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":35432,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5073 x 999, 8-bit/color RGBA, non-interlaced","md5":"1af4751d2ed09822728278c2aaebe46e","sha1":"9d3138c8a68ac93bf12ad22fcf7cb1141dcfec11","sha256":"ca075c2a5857f4b3843c3192b34fd0d09798ea887852bab65bb97e1a91900fe8","sha512":"5131dc3ed93eb01ffe14f2eb3f60c936212d4b243092c8c04051be87bd0988edf6b6e6fc20d60469fb78929f5298fd0f75423bec2c8b104709a84677f039c3f5","ssdeep":"384:frbqJCnAU/p4t7d6WoiQO98GPRKcmn15GZ3khlqQ+Zn6mORpUKQZAlgO:Fhmt7dQOD4MZ03qQ+4pUXZ+","tlshash":"ebf26d908e633a95cd9dc53294a81fa9ff692f3c90093f034b356b275d37a8e56a34c4","first_seen":"2025-06-02T14:09:35.989206Z","last_seen":"2026-03-27T13:50:06.651643Z","times_seen":22,"resource_available":false,"data":null}},"time_used":364,"timings":{"blocked":263,"dns":0,"connect":0,"send":0,"wait":97,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/QGYwz-AZahWOJJI9kykWW9mD6opopoqXSOSEEQgs.woff2","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /QGYwz-AZahWOJJI9kykWW9mD6opopoqXSOSEEQgs.woff2 HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 16320\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-3fc0\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":16320,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 16320, version 1.0","md5":"e42d0aba8f48f237c71b923b0fb1ecf8","sha1":"46ef71eb3ab25db3a9e44cd523f48f2d558a34ad","sha256":"d2e1a521cf22027d0bb0651f2e6fff548320c18482dd8d52bc4e785563136050","sha512":"93e4c6f344d17a055064418d586ad815a913097481a56438cc37ab3131349b2880ec4f56db67659123d154eee0516d70f503d8414ae817e5f1b9494998550b7f","ssdeep":"384:iiM+NLBpKb/ZKodlDkYryEvUPR+p7J1uTzzMH8Tn6ptO8O:iiRDpOQaA6PMZK7nszzi82O8O","tlshash":"6672e1d3c8412511b6eece78d0329d3917365f93881b3c9dcaa7a37614da1abca4cd0e","first_seen":"2023-04-07T23:09:50Z","last_seen":"2026-04-18T09:53:49.280782Z","times_seen":299,"resource_available":false,"data":null}},"time_used":154,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":94,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/twitter.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.252Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /twitter.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 374\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-176\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":374,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9d2396c7c1ca35e06a0c30862294c82b","sha1":"b9127a12083f51f46bfe210b9830a5248203507b","sha256":"18781ca65dd3edde621a2acdbd670665a79c3ebf90aad7955c50009fb018892e","sha512":"da2a66c813e90f1a19d715a767851da570784ca9c330fb51a711f5bff401f46ee83d4bbe8ea7623d145f65b192a4a75a1a557729723112505439e31d26026818","ssdeep":"","tlshash":"2be0c05ac4c88480450cd234f32e5466103b31f6abb9749c9654933af5185bfc4acaf8","first_seen":"2025-06-02T14:09:36.087787Z","last_seen":"2026-03-27T13:50:06.655645Z","times_seen":22,"resource_available":false,"data":null}},"time_used":359,"timings":{"blocked":265,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature6.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature6.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 3995\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-f9b\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":3995,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cd5e28ce64e6be545cc5c9907934209f","sha1":"c51262d6a46d983bc7f3e73b4b68707fbf6fe253","sha256":"4ea8c9ec84a0ff0fbb7689ef9183658025a430d30c6340a55a4cf82f706524dc","sha512":"bfbd9317e611d4a8b03c934ad1cd201e7c4b62e24209fa29b539171b0e0294ed46973d51c08fd134be480b023c979dd6d2bfba7baad9d8d2b3302e212a4c876b","ssdeep":"","tlshash":"2a8185fe637512f4a809effabd190534396225f89e918778cb112dc5f45219f958c8d0","first_seen":"2025-06-02T14:09:36.08225Z","last_seen":"2026-03-27T13:50:06.656567Z","times_seen":22,"resource_available":false,"data":null}},"time_used":498,"timings":{"blocked":402,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/main.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.233Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /main.js HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 255409\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-3e5b1\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":255409,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a474335c30edf86f39663a29c0beb510","sha1":"8c30798d0904daf97703f7b02aabcef3ff147982","sha256":"02df59cadad61522c624044e7a9a75ea65c966f74ac00878b54d13fbffb714bd","sha512":"dfee6bbcd507ccdb0a1631d78e8fbb8e5e737b2c5851654d7f2d546ad5e08933343b4a00de2775e8d7777f3cdaa5e8298a74ac1824820c27c7d6b60ba293e44e","ssdeep":"1536:Z5pMRw3C2FJEEAnn0zEyctYaxBOSt0coe7SCHjFA7TWG/EPmTcOwXc:Z56Q8Y6txBn2CSCHK7KGseT2c","tlshash":"b94477cb7e8ab84aca817d01946e0ec97bf0056cf27508ae4745b7bd74561e7c2e2dc2","first_seen":"2025-10-29T01:39:59.261218Z","last_seen":"2026-03-27T13:50:06.657459Z","times_seen":9,"resource_available":true,"data":null}},"time_used":751,"timings":{"blocked":193,"dns":0,"connect":34,"send":0,"wait":155,"receive":207,"ssl":160},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/btn-bg-left.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.179Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /btn-bg-left.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 3056\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-bf0\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":3056,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 178 x 104, 8-bit/color RGBA, non-interlaced","md5":"a88afb983542298ec3ff352deb02493b","sha1":"1e79e15b5802f974ef644dfac02c3abdb61e6439","sha256":"a593fe3141cfc44f6a1626080aac32d1c0e3e67746e5040e794ac4f13bfd3855","sha512":"f04fd8617af23aff1ef198970e9e9629363b825be2faba20f097cdd5c9444ec9b725e57d3c9001615b938f29d11f4ff19b5b5d5de9d39a943099875b3bfaafa9","ssdeep":"","tlshash":"4f5149c3eab7b7fec162b63862719263123af31583af148cca31a14c8913c04201f267","first_seen":"2025-06-02T14:09:36.123911Z","last_seen":"2026-03-27T13:50:06.658331Z","times_seen":22,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/banner_desktop.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /banner_desktop.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 2208525\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-21b30d\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2208525,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5f9b919af1b072ec17ca7be964e63256","sha1":"0040b128f625c79b08b50e872229d807189d0e7f","sha256":"0774424aaffaa27da10ce53bb1bd45db96dcaa70f992beaaeb5eb2d4ad3a4176","sha512":"dce2f5811316662cbf11de4c3552b8e510bb4e36fde676b8df36b0747e4dac41035f1b153c2391bf65f46c36d149985f423b39623b32b74f7c0deb46a8d51711","ssdeep":"12288:hG9C2aplO7F/xfZ/qUz5W2iD+jtfFKXGKUSprtKuDOZLc40:ztM5WtD+jHK2KUSX7DO9p0","tlshash":"7d250ac61220e39c58c7d65ddf7fe9d4220f60eeb6aa91d446fbc768604fac4fa05824","first_seen":"2025-08-22T21:03:50.491734Z","last_seen":"2026-03-27T13:50:06.6593Z","times_seen":11,"resource_available":false,"data":null}},"time_used":781,"timings":{"blocked":101,"dns":0,"connect":0,"send":0,"wait":108,"receive":572,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/instagram.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /instagram.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1965\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-7ad\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":1965,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"033d66c545f88c4c6a8a3a585f03fdb9","sha1":"822670c730bd01f9de9f8c67f7eb5ec7e354c488","sha256":"4394954fd656b9b20e85849c9dbc8550876b0b39820ac4706237ec069aacf02e","sha512":"160b7e7863128e290cc2b0e282c7f647a7d7f0af49f15ae1c6e867c5308549114edf1f570be051082b3cdb61a7db7d3ba4dacc4c1aa91a989cc98f37dec8a995","ssdeep":"","tlshash":"b641f1f25340a1c4d58bdff2fb3e75b568e650f43f8942b641a4e4c65200fe58648dc1","first_seen":"2025-06-02T14:09:36.026544Z","last_seen":"2026-03-27T13:50:06.660306Z","times_seen":22,"resource_available":false,"data":null}},"time_used":385,"timings":{"blocked":294,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about-gun.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.272Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about-gun.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 112299\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1b6ab\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":112299,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"40986ac2db3f6f5934b219167209b253","sha1":"3b0f987e6f510f31e66cdba2938b9570d505fb6a","sha256":"472018aba961880ee6b9ae955ccf1bbcda5eb9ce8b45a5027d620b8d349d1a8e","sha512":"703db979d47d5468c8ddc11cb18371b08221ee3ca965e9ec8fd903f05dc411999fdfa639dee1de7ee43ebca763acf9e202d6b2d412498a4a065522bb7d841a45","ssdeep":"1536:UZ+DljOIbaP04oO3OsfdXjEvkpRv7UrnNb83/:rFypr","tlshash":"cdb3c7ca1770e3e0d9cbda9eef22ed98255bb0fd8e7695c045ae860c5587dc4f904c60","first_seen":"2025-08-22T21:03:50.440165Z","last_seen":"2026-03-27T13:50:06.661151Z","times_seen":12,"resource_available":false,"data":null}},"time_used":602,"timings":{"blocked":487,"dns":0,"connect":0,"send":0,"wait":97,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature2.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.260Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature2.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 7937\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1f01\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":7937,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4fde238c415721b722e43e4cd70b7d6c","sha1":"0b65505b95bd7305b45694d78f18c1da5d24929b","sha256":"a8a9b5642dfcba71bd0fd3461177d41cd0f98f78f1a994633cafa1ba6f86fba1","sha512":"522ea1ad47b7cd24a365b6a87d3623bc65d74f7de8e7a72ae6feef7c90fbcd6b9b130c634c915175d61dcc24bfef64bf4063f5034afb925e9ad52677291e880e","ssdeep":"192:/4iqt2dLw+2aYpnMtHC4JB0uWSQm1TFlWi+3kEvya:/4P2dV2aY9SB0uWSQOXWi+0m","tlshash":"20f197fd7be9a2d0e109f7e2ea21845d7b0a28bba7d1c768c2d8ad10b91106cd449dc5","first_seen":"2025-06-02T14:09:36.092401Z","last_seen":"2026-03-27T13:50:06.662032Z","times_seen":22,"resource_available":false,"data":null}},"time_used":431,"timings":{"blocked":341,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature3.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature3.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 35078\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-8906\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":35078,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"75aceb32b79b7700d239ac92811ce458","sha1":"37ea288e410e44e7947a06d7ed2ed1c369317fca","sha256":"34665e948cb7325085e6f3cde9c0c4b3e38b68a51dc187ae45417f0ddf6f20e8","sha512":"beccaf2bc065054cbb0eb58a4d33a7d7646fa0afdda763a015004f66b36f649aafdeb751240a3bc64f1bc7e80b27dcdc54de91582c02515daca8c5943789cfd0","ssdeep":"768:hdjNgosQr+ws2Psz6SdFl06aFOYv1sQhkQE95ePUgllPai8FN:rMQrF0z6SdFlyFOYv1cQQGB0FN","tlshash":"70f2d0d0dac97754d10dd3f4a04a16b43d1528b96763cf9dca288e8effaa1edc90d811","first_seen":"2025-06-02T14:09:36.010803Z","last_seen":"2026-03-27T13:50:06.662765Z","times_seen":22,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":348,"dns":0,"connect":0,"send":0,"wait":100,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/tokenomics_menu.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /tokenomics_menu.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/webp\r\nContent-Length: 8070\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1f86\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":8070,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e44cb659003f94e4b1eeed83713a6159","sha1":"092cdd4492faf1dbff4fdb7326600c93dac2b2d0","sha256":"0e284f3a756b8069e7f31c8e65ba42ff180cbf8c90b735bfc71eb295f587411d","sha512":"c2135ac547d8f601fba9272e2ef9d2e0f7a6cf73ec9489ba8349290c029218b2046b7b208d615c4abe19a800e01ff990f375a5f5adf11a8b2d70a77f8d56bd85","ssdeep":"192:74meVibREJf9J8lDhowsH6Mwnpn6Do+MTqLQxVUtBSd7XqTp/:74mNdeVW9HsH6MwnpnimmLQxVYBSd2Tp","tlshash":"c6f1ae09815582eefbf8e2b3730e4fa6d08391c7837a17a551de25fe8a1d02932c53d1","first_seen":"2025-08-22T21:03:50.501468Z","last_seen":"2026-03-27T13:50:06.663584Z","times_seen":13,"resource_available":false,"data":null}},"time_used":767,"timings":{"blocked":660,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/telegram.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /telegram.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1243\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-4db\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1243,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e7a853fd3af15a96448be54c2345b431","sha1":"405d528820ffc5fefa5aa4c3704315fa631abadc","sha256":"1338f7a74213f54f435803ce7891e209863c21cdaf41f29732239551296e1356","sha512":"b06c4d51f2961fea4bbdba4cd9f6d0d601879f13bb785a3474c63e038326591ccd031aa4e9e1ac530cf9c3816150c8243b4f32ff4e5ea710ed6f142aad92633f","ssdeep":"","tlshash":"832102ff81d87185a016fbc4ee770025ba6f30b1aa66c5980fc8ab64ed5218d45e98c0","first_seen":"2025-08-22T21:03:50.467099Z","last_seen":"2026-03-27T13:50:06.664409Z","times_seen":12,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":261,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about-modal.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about-modal.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 186551\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-2d8b7\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":186551,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b234f445e9f8d9aa36cf629746bad75c","sha1":"18d9b001b849220d5e473adef60c9ee4ffa2394b","sha256":"c125905ac49717e37b73244a8fd1816a3f48dcb7da6ecc905c9fe94c97a34230","sha512":"06d17b01681c542f6457fa1b3062d7cc13c23fab10e81892a34f08bfeeb52f53bec8ce4fbbd9b94d26a92662801b9ed81fe9eb04ca74785a172028ede3ff9cf8","ssdeep":"1536:h6tgQFBZhI5JvR27luj0rPUl+RPEIUOmAHeY5u1HJ/XqWu:m","tlshash":"0a040dfe6b641ce1dcc6c7c7fb12009db11fe0bb59918f50c61cab1e388696d985ad82","first_seen":"2025-06-02T14:09:36.020934Z","last_seen":"2026-03-27T13:50:06.665701Z","times_seen":21,"resource_available":false,"data":null}},"time_used":554,"timings":{"blocked":422,"dns":0,"connect":0,"send":0,"wait":93,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/honey-bee-token.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.274Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /honey-bee-token.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 7897\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1ed9\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":7897,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1c2742d13dbb608d94eed89cbc721960","sha1":"b50402cf001b414ded175a4c8dc65f0bc77fd402","sha256":"89d029cf40718494867ce316a35f30e2d54c3e74508cb44bcf09b94f652a588b","sha512":"4f3beb5a21a83554cad0ec6262b8515846eb8fe2a6b74ef7c605d0bd26993eefe9ca4f20fb94a6157e871f428571f8d1288ec9c62e0f1c506660c5b0e3dba1cd","ssdeep":"192:FZ4pVERD6Jw6JCFL4yqlHlF+Lkdy5YFqdoC7/W:FYEafYclwGIYFqS","tlshash":"adf172847369597cf01397f8cb2b3134e92b29d63911e498c7b72835aa0610da93fdcb","first_seen":"2025-06-02T14:09:36.12564Z","last_seen":"2026-03-27T13:50:06.666947Z","times_seen":22,"resource_available":false,"data":null}},"time_used":697,"timings":{"blocked":548,"dns":0,"connect":0,"send":0,"wait":147,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about-bee-right.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.275Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about-bee-right.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 7902\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1ede\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7902,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"350ff3bc6050547658683310c5d7474f","sha1":"41749eb2c5030edb5511a345f5e97ad321f2f9fc","sha256":"9d4e810d932ebff0f2973ea3bd612370de3aeedba5c45fae91825c3e3769bdb6","sha512":"410bcf51002ac68da05d812ad5e46bcbed6e621f393451ffe25b54916e731f9a6e0aaf7b1bfd0f0c4dbbbcf4bdd65a3827a9cece706d63b1cad39c777e81f17b","ssdeep":"96:0/jX1hMJSW5/DprjBGneZ2LX8rjZTE9VR6E0ie0a6aLKu8iF+U72A6VvXhNffPAv:GjXoT/DHGmGVYie0aLWS0fffRu9IAXfx","tlshash":"d1f1748823aa15bcf4529be4c3367131bd6a08e22e11e264ca731d76d24610e5dffcdb","first_seen":"2025-06-02T14:09:35.995391Z","last_seen":"2026-03-27T13:50:06.667898Z","times_seen":22,"resource_available":false,"data":null}},"time_used":697,"timings":{"blocked":550,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/features-top.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.196Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /features-top.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 17665\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-4501\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":17665,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5136 x 452, 8-bit/color RGBA, non-interlaced","md5":"b9ba5e5e6addf28c3133d5ee6ed85793","sha1":"1f3723c2f96f149ba682fe840fec589c7751b151","sha256":"87558e2b75e749c4696a4353509a29547282337927f83ed050f590e0e616159c","sha512":"75ba06ebbe6268fa9453fc569d0318171e221d7e0ab9b1ef276f671d62e54d9dff6e66b6f4b7cb2f1c550bae23a3f81739a0ac33b01554351515f86e7f29ffbb","ssdeep":"192:hkVuGLPugCle4XfDeHXvLmBdr8VHA5pcKeyTOE4kNqG4vNhJl5RRo5kKj:hMWomLI9KeOvuvNHDaj","tlshash":"3982f797dcb66ce5c1598373482b0fa6bb3a1a7e060d0f2853364c766e8a758de07139","first_seen":"2025-06-25T23:32:50.920205Z","last_seen":"2026-03-27T13:50:06.66877Z","times_seen":21,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":127,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/next.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /next.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 840\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-348\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":840,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bd24060e87986ff42eac0ff66372463d","sha1":"6b8326e3d65cce27e202eb28aab21d36d81a5f78","sha256":"cafffed5a09f4a985843530516208b7bf80c9455eeb918a71066c53f34e46ba6","sha512":"e04021709e3fa42d984471bb4b90a95bb2203dd4b5d7ac0e94d7e65dfe157d6332c0086f4009309ea4f1cf00abd6d827e2534b6ab771b8b4375dd66b0e22324a","ssdeep":"","tlshash":"5801c211326db668e900827153ab75e6743530937146d4c1c64c1d4dc107baf1c9f984","first_seen":"2025-06-02T14:09:36.053406Z","last_seen":"2026-03-27T13:50:06.669594Z","times_seen":17,"resource_available":false,"data":null}},"time_used":745,"timings":{"blocked":656,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/btn-bg-right.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.181Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /btn-bg-right.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 1676\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-68c\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1676,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 96 x 104, 8-bit/color RGBA, non-interlaced","md5":"2d0eb802c3d1c5def906e6d2ded9b383","sha1":"1b1d9ce14466bce5b881366fe3248b2d0a62b7a2","sha256":"24e0a13fe7ca803c4a5305fdabe43846160199bac357f3b7646605c0012efa7c","sha512":"d5dd3e981b4abeb12f3dd6b42a9cf89091069a04a19b0457e764e04fceb0ecae59c15a3bab429e2bb63d30c2325f3b13eb81b0a1f10545ea9b881a6455b5ff76","ssdeep":"","tlshash":"1f31faf456dbfcab80d5837966b24b803d6f27082b2bb43a906553603e8f91345573e7","first_seen":"2025-06-02T14:09:36.106264Z","last_seen":"2026-03-27T13:50:06.670487Z","times_seen":22,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/roadmap-frame.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.201Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /roadmap-frame.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 10159\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-27af\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":10159,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 484 x 377, 8-bit/color RGBA, non-interlaced","md5":"f3eab9a39043ee111d3c236c9b2dc8c4","sha1":"4e69b04b705ba6e17729c2247a726a9ca23c3d07","sha256":"55902d41e496a4dee12ce690219423a63ab0be80552a2cf988a611916775c3ec","sha512":"b9b8e67fa05daf525b9aa3b4b7fe4fc4765427fa3ed0ccf354e94378a23410804bc65b16499f631f59692bbdcc46426ceb9e0f89b7462263603c5314fe8f5dcd","ssdeep":"192:TFmvCWu/zQTh4Zowl22JOzd/mmBdeSKmJFD4dkjO:TQBu/Ed/mw5K+94dkjO","tlshash":"6522af3c2b3318789291547b2c7373df6e6d80d610a2ca95cf673d850a5993e5d885f3","first_seen":"2025-06-02T14:09:36.067924Z","last_seen":"2026-03-27T13:50:06.671314Z","times_seen":22,"resource_available":false,"data":null}},"time_used":316,"timings":{"blocked":217,"dns":0,"connect":0,"send":0,"wait":98,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature5.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature5.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 8671\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-21df\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":8671,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fa415a42884018249e18db24e3e8c319","sha1":"7fd92dfb31cf0249b3edeb288c28c064e1f2080f","sha256":"94ee7b385cf8b5f377bdb282e11dbe6e05c4865ec1e6999d0183e1f990e363f1","sha512":"3e7023374d494c9316bb8747587d61a2f63ba33af2f5eb3efdbf9c4d8da9ca7bdcd0dccbe789ccbc03cc88c2c9cf81d78e5b88d4ba87756f176ecdcefac6f467","ssdeep":"192:5xnFQa0PwWNnHMy7UWynxEckIaLiUGQ2FdQ9e/:5oJHMfn9k1LiUGQ2FdQ96","tlshash":"8c0294ce63b813fcf48ad3f1a7161875391a65fa2dd3d534c3a82c0b994182c5e98d43","first_seen":"2025-06-02T14:09:36.038942Z","last_seen":"2026-03-27T13:50:06.67211Z","times_seen":22,"resource_available":false,"data":null}},"time_used":468,"timings":{"blocked":375,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature4.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature4.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 8938\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-22ea\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":8938,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ddf3283fcd3dde2640cb701e54a161d4","sha1":"8bf7c49a3cc952a5edc3132936c0e62b5b21df05","sha256":"463d12bd9813019ae586c86ab38c85b4e9e3dfab0dd990337c6ca97704457fe5","sha512":"93b885ed49b6d4b91afd6059b300cebe48e2f9d7b8b31c7c1397358194a5afd66f79cbb33d8b587527a96c3893b297f9eb06345d8049f963d635c934dcd47e6a","ssdeep":"192:SHx1XkzRMlyfXxX3b5R0Z+SkA/1byUXiPQZ63sbJW8X:SH7XkdMlyfxXL5e+Vg+UXiPMqmE8X","tlshash":"c20222eea2e5b3e0e157f3f5da13442a759a30be7b57cf68c2554cddba52098884cc80","first_seen":"2025-06-02T14:09:35.99178Z","last_seen":"2026-03-27T13:50:06.672881Z","times_seen":22,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":397,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/faq_menu.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.289Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /faq_menu.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 13383\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-3447\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":13383,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 194 x 219, 8-bit/color RGBA, non-interlaced","md5":"6f0d5f8f919653910a9428d3e2c6c489","sha1":"f33c721a22c10748216d812fea3cc95099278314","sha256":"c54d5eddbab39c0b985925d12f4bf4a7041d11b1acca72869af85880d429636d","sha512":"ba14d3a9e2981adc10c88d4ddb56a499f0a0d7e3f10ac0153d40c6ffbcc429ae9dad739b2fd5d48bb59c1b3d83b68760d851640e7f9328f3e88cca209ec98763","ssdeep":"384:01klVVIrUXIz+XQN4KPB1IlW4xaXMz+UaOVvT5:01wPIQYzL2KB8BzD","tlshash":"0152c06002a3682ae4c55d6957f6e08f6a835bdf727894bb4d40df8660f38c01ef1757","first_seen":"2025-06-02T14:09:36.03322Z","last_seen":"2026-03-27T13:50:06.673649Z","times_seen":23,"resource_available":false,"data":null}},"time_used":843,"timings":{"blocked":750,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/en.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /en.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 535\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-217\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":535,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fcfef6780b36bef537381474df9d0be9","sha1":"68b2ead4370e7ab7b70eb6d35a09c31e73c44fd3","sha256":"51a8613ac1b05eafb9486e6420336bd8b95dae7a9d11def6318776a61c701a08","sha512":"ec21f7b6951f00f0da0acfdb21bbbe037dcaa2a14f2a1de02c991f91af689b1039720801ebb90ca900379766d5726752ed7fd85a349db508d3f94edecc4ec0a0","ssdeep":"","tlshash":"acf0c9c8c32c7005c70a97105cbcf8e3d4c9a1ce588400eab4e09ae460aeba7dccadd1","first_seen":"2023-04-17T21:02:35Z","last_seen":"2026-04-19T05:02:12.894052Z","times_seen":1910,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":119,"dns":0,"connect":0,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/bee-icon.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.273Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /bee-icon.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 36396\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-8e2c\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":36396,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"222fcc8a24a533dbb91cf66fef5cd7e5","sha1":"75869b40d541b1fa120d3fea6f739a1f7d36e8fe","sha256":"21b72c1f73597d1d282febb546c8f4b99d4462bd4d47c30430bd6d660a72ded1","sha512":"a7807779f13b6d609a513fedfe91b099c707a4307b0cffcf631728f7326a370916539cae8eed7d8db4d91e36864e8bd7bd8ce4d6f6bdb3422beb8beb7924cac9","ssdeep":"768:kkLAB4SmudmukUietTnLNZ7228ZQdOAiA+W1:DAB4SjdmTUFL62tf+E","tlshash":"e5f272e7a3d8b2f0e403ebe0c926a475766738fe3f12cb9947959e90a61515d88cccc4","first_seen":"2025-06-02T14:09:36.069021Z","last_seen":"2026-03-27T13:50:06.675565Z","times_seen":22,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":493,"dns":0,"connect":0,"send":0,"wait":97,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/modals.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:35.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /modals.js HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:35 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 52833\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-ce61\"\r\nExpires: Sat, 27 Mar 2027 13:49:35 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":52833,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (52831), with no line terminators","md5":"ecbc5043a1e25f2bd5bbd6e3c3be49f0","sha1":"d66eb695679871221c52958d94029c6358b7613d","sha256":"6d0c2c8d032982e9a86a1bed14f709911058b6b693abb5d46335a0106c12c411","sha512":"38b9aedf74859ade1e5445634b338f560c4d0520ab126de202ad98942bc0f34e740b93c7123a3bc53dcdded31944c174ad06bf1ca006e137cb4e06a949e86088","ssdeep":"768:ywjvL/eQ0ae2vBKRDpoKvTQv4n59+Y44U7kFlaoGHv5:ywz2n59J4inM5","tlshash":"943311071cbe31361daf0fa3b7cc1a1b4e2eb351e612aaee71bd1446438bd74c5a5618","first_seen":"2025-07-20T10:23:41.460008Z","last_seen":"2026-04-13T01:12:09.502384Z","times_seen":719,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T13:49:32.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: text/html\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"68ff84a4-8740b\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":553995,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (48153)","md5":"94177b3f9088d5ec2611fee099693666","sha1":"0fd12f35804896e9a63988b3d69f230cdb3ffee9","sha256":"3891b9dcaf4394ec49e86de2f6623cf3177c03991e30928f06b89c4da053efa3","sha512":"e9063a01c25ebafae72507dc078cf6ef717230f978e54c5ec261ec60729c8c09a559c9f0dfdd1c6b9816f5f79b70a512961e9b8f0f7dae009a9188bffe47b963","ssdeep":"3072:rKzey/x0WUNQWqW0/2uR64TM+eyCngG14TM+eGKxJI:RyirqlnpfNCngGqf1KxJI","tlshash":"fbc4d7b2636051bda6c3e6f805d33c5a297158e3f50a998cb2dd1c888fc27ed84d67c6","first_seen":"2025-11-17T23:19:36.919907Z","last_seen":"2026-03-27T13:50:06.677749Z","times_seen":2,"resource_available":true,"data":null}},"time_used":684,"timings":{"blocked":192,"dns":1,"connect":36,"send":0,"wait":152,"receive":148,"ssl":151},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/how_to_buy_menu.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /how_to_buy_menu.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/webp\r\nContent-Length: 7140\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1be4\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7140,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"8171a9258934a9e7ea46d2552c286c76","sha1":"7d34c9e466d445a9eecd183d7252a8a497c01af6","sha256":"a676070f5bea7a9e4fd1c6eb767c593a596de3819f4aefc27ba435c4278f4e47","sha512":"137c51ece83e0bcaae40a32a81b355febaf2843303cc8355e77c95254be4dc4966b1fef7b7888b99aa813c4fd3d4e6942f03f1fa439c1a17a57662a0c5ace2f2","ssdeep":"192:stESK8d7X1s8J31TeSD7uWEBQX5ZNmHuRuKZ:IESKa/Jl6euWYQXfNmHuR7Z","tlshash":"bfe1b0e15c06d3cd7f597e3fe10a223047278abc52b2d49f12bab010943cf94b5255d4","first_seen":"2025-08-22T21:03:50.534706Z","last_seen":"2026-03-27T13:50:06.680195Z","times_seen":13,"resource_available":false,"data":null}},"time_used":751,"timings":{"blocked":659,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/prev.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.291Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /prev.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 843\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-34b\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":843,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1bbe29a12d66474c4ccdb41427101a67","sha1":"3ad1eaae475889f8807801fbec15375ca0549e8a","sha256":"ae396b197edf5a7456d193fbed1195c439c031b567db695b43b49d184ad7ec05","sha512":"30fba4c9edd1f4ccb5864f3f99a11440ccf7cbc8c55fa43dc5fc32acdc537bc27bc5405e03656a0c2f33a239bc1d0fdcb3409baabb22bf14d347a583ea14ddd0","ssdeep":"","tlshash":"3501ef28a38ad0d4e54162fec22e53dcf422bcd9212100d88ec21416e4870bc7c5e8e7","first_seen":"2025-06-02T14:09:36.003417Z","last_seen":"2026-03-27T13:50:06.68138Z","times_seen":17,"resource_available":false,"data":null}},"time_used":749,"timings":{"blocked":656,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/tokenomics_bg_desktop.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /tokenomics_bg_desktop.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 1801\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-709\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1801,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4be6016fc732eb985b84c03685a59c38","sha1":"8d245bf1e3ee1144c27ddbae7374832f50ec035f","sha256":"50328ce41c58735f62e1897ff36fb37671cf425f98340c7f4a11bea821926caf","sha512":"b00fc5a9020bc8909dd2db9e3a9fe9fc73365a289af2b55997696977b6aec40ee17a02e8b8ee96a8343a28672600eee71f7f3cd19efa43e0bccffaf512b06882","ssdeep":"","tlshash":"b73185ed61184c8255d6c2c7eb925058770bc4aa47c34370c3d9bb2a7c118445d97ec4","first_seen":"2025-06-02T14:09:36.043213Z","last_seen":"2026-03-27T13:50:06.682245Z","times_seen":22,"resource_available":false,"data":null}},"time_used":344,"timings":{"blocked":253,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/fpbundle.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:35.250Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /fpbundle.js HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:35 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 45503\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-b1bf\"\r\nExpires: Sat, 27 Mar 2027 13:49:35 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":45503,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (44961), with CRLF line terminators","md5":"1c59909ad8d56060bf239a34a275da3d","sha1":"1164057a0631f6b5dd80387a1c3a9e332fb00bb4","sha256":"126a8b465ef8734b4d7a289781e0535cd283ccf24394e08c44f23ae300be3a5a","sha512":"39d33737c908bf2a1430f157990f931a0644471a0cf20de61721596e1330fe5867108db7e47d1869576710a72f886ef42e7492a2c0ed05fde2644f6d338e3eac","ssdeep":"768:v8UXI0Nc5VArhXDh1bnUsAq1++umYUT15+2gT/RcKrNcFV3BT/Vo:vN/NcnArV7f5+9cxT6","tlshash":"a413c7a873c67139a217b0719dcf4845b67d6d182289884dca2ec4a4b879d3dc77ecec","first_seen":"2025-07-11T11:18:53.943693Z","last_seen":"2026-04-13T01:12:09.504298Z","times_seen":717,"resource_available":true,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/btn-bg-middle.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /btn-bg-middle.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 231\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-e7\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":231,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 18 x 104, 8-bit/color RGBA, non-interlaced","md5":"1eca9048f718cc5a2dcde9a8b3dc3359","sha1":"576ed6b64828b95895629678e1a00e0fe67254f5","sha256":"3083cbd6bb413c7836de9b3c4376f9642f944f78bee1a7a456f0a02259be7297","sha512":"6cbb67e93f48f9c15bb430eb104f39dd2e4589f44a0cf7b3940f21c0b06467767759da6ed3fefb995090b1c05822d84dc9e4ac75795675a694278eae152644e7","ssdeep":"","tlshash":"ced023c232d01abc8339c07d02022004a13c006f84320c887c1c03b60337e0490fcf21","first_seen":"2025-06-02T14:09:36.014899Z","last_seen":"2026-03-27T13:50:06.68396Z","times_seen":22,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":11,"dns":0,"connect":0,"send":0,"wait":92,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/key-frame.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /key-frame.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 5086\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-13de\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":5086,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 134, 8-bit/color RGBA, non-interlaced","md5":"5c2c123e97655a0dba0edc58a1b4436a","sha1":"9752ac9aad9efd4da8011dc262d5e0103dcac969","sha256":"66e3084d627df6a42e1d56d3cce53f71083739d1d10ef132e18c52195087d919","sha512":"1488dd5a7fe0eb04ccbd816d77de03cca5494b18a80b5add1200b02c533fd3ab06bf1c7ae7a8bc737bdbcc59d0ed53c3bf9dc2f1c05c461e2d0095e9eb7e9883","ssdeep":"96:iSjVHuG/oV/mL6z85U5vEEgeDkETwOUEHhWHktrjTHe5UAmcN:iSjVHuX/mLU85UxjnTw8B7tH7BO","tlshash":"58a19e6c4e5057670a287104fab72eeb2df119ad4754fd43a9617c2bb492bccc4f1c54","first_seen":"2025-06-02T14:09:36.066792Z","last_seen":"2026-03-27T13:50:06.684683Z","times_seen":22,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":168,"dns":0,"connect":0,"send":0,"wait":91,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/cY9cfjeIW11dpCKgRLi675a87LhADpI.woff2","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /cY9cfjeIW11dpCKgRLi675a87LhADpI.woff2 HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 63956\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-f9d4\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":63956,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 63956, version 1.0","md5":"eaf4e7bbeadb147839f846053504de29","sha1":"1e659d97748c0557e10c9a2153e437b2a808fd61","sha256":"982061b7ba31713026b042085fe1d59da85eb4f9a70c208533b1f49e29a21fb4","sha512":"909fed0ca664f026168bd6d247e900c35dcd305f279ecf140501ce594810546dcb5f7856f2b4127cbce26cb30ae5453390fe5298c163a1956c65dc418f258857","ssdeep":"1536:k5qnTVGCJCx0ZZylqUC7c08uDW570lh4hJkB1i2nWuXN5tj:oq4CJnZylmo0pDW5YmJoi2WuXTtj","tlshash":"f653027661cae8c172726ab60f9d664f60480805c0c4fca22993bf60e3743657fcd99e","first_seen":"2025-06-19T04:22:21.129284Z","last_seen":"2026-04-10T22:48:49.843522Z","times_seen":157,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":62,"dns":0,"connect":0,"send":0,"wait":96,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/1Ptsg8LJRfWJmhDAuUs4TYFq.woff2","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /1Ptsg8LJRfWJmhDAuUs4TYFq.woff2 HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: font/woff2\r\nContent-Length: 30872\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-7898\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30872,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 30872, version 1.0","md5":"efa8f37b35f8fc0f18b776857f20973a","sha1":"bcdd1cd13a7ec5147f622e3b383145c6fa257fc3","sha256":"408f20ae9895ceefa460a383d76497a91abc469e3d00b49f080efc7f4b12c60e","sha512":"e0989ad7a8c65a2c2a7e630aaa2e09286ccf69f038c32f91724802b379e1aa2b6e74adeb253541f05aa2710df6b554f471b2bbb4e40587c7d94f05a288e7e6bc","ssdeep":"768:dQVA6q4gd1JkJ4Qs0fU9G0lYpF/9V0oClBgLwc6Q:9P4gDJY4ScGPFLQBgLl6Q","tlshash":"4cd2f2039bd5cc40903d917d763b463c136499dd1228e6bec93137b9115ee4ba478d3b","first_seen":"2025-09-10T11:03:41.936587Z","last_seen":"2026-04-19T01:38:17.463746Z","times_seen":1125,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":25,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/feature1.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.256Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /feature1.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 8896\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-22c0\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":8896,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2ae68f8df4731707df28d44bb2b33223","sha1":"00147b219f1174a793d374517fbad989cfe43dfd","sha256":"6f7f7aa4346562325c7dabef209862a6e526d16596f5ac242cd411c96ee8a5c2","sha512":"7620d2b47216a39d63a4a466329494543903e79440d32e2f47003eb16b882e48cdd6d12b12d12aa7203e5a0bd004e0532c2246f942690ebe5ba9a782717b2f4e","ssdeep":"192:6M+s5K5kAAhOwe2BJ5D+SOwuJSn9Hf8uC/Uz:Ms8JAhO/CuJS9Hf8uCMz","tlshash":"8402a4ea63dcb2e0f504e3b5d9260575ba7b38fa3746cb94c354ae98b91204dc89ccc5","first_seen":"2025-06-02T14:09:35.994129Z","last_seen":"2026-03-27T13:50:06.687061Z","times_seen":22,"resource_available":false,"data":null}},"time_used":409,"timings":{"blocked":313,"dns":0,"connect":0,"send":0,"wait":95,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about-blue-bee.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.270Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about-blue-bee.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 32304\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-7e30\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":32304,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9449698795fe345a2662151971fbee11","sha1":"f0cbb41a6ada1dc27e9d8429a5fe242be797fdbc","sha256":"92c420eb0e0afb4bf648398ac3b8c11ccdc6475f0e8385d3a0f8ae66060f45fd","sha512":"ee58eb6dfd4acc2f3dafab318ff5e0f0d735b13c0de1b4b48ff8cc22e2026460050d5debb2c19dc5fab9d339b739bfa96cd43160724aa37002d54cea4bacb7ee","ssdeep":"384:o/yqicUljiSfzleqz50WVI8tsMOvNpL+jh+4DuNKYgG4LzFuH5s+0xpmsnw6/Q9f:o5UOSzz568CEjiPgGQzJnw6oZs697c7I","tlshash":"e3e292c033b9a3fcf002fbfd8622a8757e2728fa3a5285a5c3a15d45e55201d4d99ce7","first_seen":"2025-06-02T14:09:36.023996Z","last_seen":"2026-03-27T13:50:06.687861Z","times_seen":22,"resource_available":false,"data":null}},"time_used":554,"timings":{"blocked":447,"dns":0,"connect":0,"send":0,"wait":100,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"1.1.1.1/cdn-cgi/trace","fqdn":"1.1.1.1","domain":"1.1.1.1","tld":""},"ip":{"addr":"1.1.1.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:36.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cloudflare-dns.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"SSL.com SSL Intermediate CA ECC R2","organization":"SSL Corp"},"validity":{"start":"Wed, 31 Dec 2025 19:20:01 GMT","end":"Mon, 21 Dec 2026 19:20:01 GMT"},"fingerprint":{"sha1":"F8:86:35:01:72:60:D4:0B:9E:B4:17:BE:E7:37:37:91:1B:63:0E:59","sha256":"E3:B0:28:26:78:9D:65:3D:22:4D:3E:DA:CB:E4:E8:77:CB:72:86:FC:4C:92:26:72:F6:22:67:41:CA:57:AD:65"}}},"request":{"raw":"GET /cdn-cgi/trace HTTP/1.1\r\nHost: 1.1.1.1\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nOrigin: https://snorter.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Mar 2026 13:49:36 GMT\r\ncontent-type: text/plain\r\nif-modified-since: off\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: 9e2edbfd5afc5694-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":263,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text","md5":"b4f926d39414a3f96a78b61935039a4b","sha1":"0ab19eee5e09f1f8ef3d7a26c6d14403e725f800","sha256":"6f054cdbed22f510f3baa85494129553c1fcce7b19bd5fb87b7cc5848aa32edf","sha512":"451a70ab545e5f30b2e1c73a5af757a05cce1f2820760b597f8bd95f90c3e25e5c5f1a9cd2d0f0e8780dbfeb04332e4f5841f9d3145704dff7d14758935f3727","ssdeep":"","tlshash":"efd02bd7921d045c142c544502ab6281d7b244578ae77821ede58500af882e714ddde0","first_seen":"2026-03-27T13:50:06.688658Z","last_seen":"2026-03-27T13:50:06.688658Z","times_seen":1,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":19,"dns":1,"connect":1,"send":0,"wait":4,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/w3p-logo.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.281Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /w3p-logo.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 40679\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-9ee7\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":40679,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"0e92d0bf2bfd2923f926992bf6faf66e","sha1":"39b028b41b6ee2af8161cec74c6320c312664ee8","sha256":"799b9932ff92935930849146a40ccd26e85081f0a5b7e2f5c36851762fd8f319","sha512":"9f6aac6d3dc7a0cc43cb52b7fd3769cb061e8ff0cd0355f4d1958239cf4d59f5af522c3808e3c6cb469380ccc337c5ef000ea809df626d7c8c3bc0799b01de5a","ssdeep":"768:AL4SXKODaiRv5WJcjCC53lOje2mGls5VyZ20KAYzt1cyNqnkq1vcPXZeyHJOe:fSXKODaCRWJcjJ1Ue2mzKyAmVckq1qrH","tlshash":"6803b7d8b35445f4ee5ea3e18ce268ac3d2b21fa37015038cb587ec55c272ad9a5d8c3","first_seen":"2025-08-22T21:03:50.452981Z","last_seen":"2026-03-27T13:50:06.690505Z","times_seen":12,"resource_available":false,"data":null}},"time_used":766,"timings":{"blocked":666,"dns":0,"connect":0,"send":0,"wait":95,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/roadmap-bg-right.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.199Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /roadmap-bg-right.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 68504\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-10b98\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":68504,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"a32b09ef13132a1a9111ac8d239cb7b3","sha1":"53bff2c44bb94779afb5e5e7286f2a1a6462fd89","sha256":"9c30462a4cb5e6716531d2741719d1114c05f90a629c8f2bd5f14e1e357fa371","sha512":"2434f8b1b121a2b3f5a2c156031242f5b380ff31114813b7b67b4aaf48f5ffeb95b4438cebc786eca9ef3809cebefcf3a454a5095aa25ba7a227da127e7e7a69","ssdeep":"1536:HKuFuxLgjFny24ZPl3I+gOPtYKH6I+Aw5b1VfFUT5PIWV7:HKpgByBxlpfkI+AS/fyT5PIWp","tlshash":"6863023a353a6bf678ea0c8b664216c6173dd673df0b11412b3ea844fe0f7894e2195d","first_seen":"2025-08-22T21:03:50.464951Z","last_seen":"2026-03-27T13:50:06.691275Z","times_seen":12,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":214,"dns":0,"connect":0,"send":0,"wait":90,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about-img.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about-img.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 299149\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-4908d\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":299149,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"57c23ee37dd65675f2e9407235b514f8","sha1":"1ef1f64116b82cd870509c63339df10172b14e14","sha256":"3864204ac126327ce9e0773ab50cd2749994397f9d82459c19ec654a0af03ff7","sha512":"4006cde976390335547bb1c166abaff48fbd85c630bf4b9d40b3aef69cbc532dcf9f39372594ba968d305f1ebeccd6e0b2e77165d1c63626bbbe5caaab3d71c1","ssdeep":"1536:V1V/7W5nGJZ3fxaI5CkOIdpDcoGukOTO2xQvxodp8dCP2ckOJdyDkNeTG7yvIXSf:ZrfS","tlshash":"055495fd7bb015e4dc89e3d7ef1204b9342ba1fb6991ce54c22c6e09389286d9c59dc2","first_seen":"2025-06-02T14:09:36.070021Z","last_seen":"2026-03-27T13:50:06.691956Z","times_seen":22,"resource_available":false,"data":null}},"time_used":709,"timings":{"blocked":462,"dns":0,"connect":0,"send":0,"wait":96,"receive":151,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/logo.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /logo.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:35 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 105135\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-19aaf\"\r\nExpires: Sat, 27 Mar 2027 13:49:35 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":105135,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"efa9230f260f084f9eae20671c7ed211","sha1":"ab9262461e71dd0988c01fba3b66b45f94b95024","sha256":"647fef73c5186c290438eaad3f4fb0f10949b4f803c1d2c3d68f2147494c4998","sha512":"0faf48679be6bea84de9e0a2a850089f7836ea4e2ad6d8bfdea379de566258765b2c419260b0f2e86a5b32c51911845813e48c7009b017f885c4ba62fa66a74b","ssdeep":"1536:TNL0VxFP93PTW2XJcnst5RYU6uSETBMkBwXPi30jynh:34POQmY","tlshash":"a3a3c4c4b3b8a3f8f501f3f88626a8743e5328fa3a21d558c7a52d85d96159c4daccd3","first_seen":"2025-06-25T23:32:50.930392Z","last_seen":"2026-03-27T13:50:06.6926Z","times_seen":23,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":92,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:36.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:36 GMT\r\nContent-Type: text/html\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: W/\"68ff84a4-8740b\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T05:23:21.357451Z","times_seen":13922919,"resource_available":true,"data":null}},"time_used":92,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":90,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/about_menu.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.284Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /about_menu.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 7800\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1e78\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7800,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"744390529aa6d7de69e855c07cead38f","sha1":"6e6f1745a97e390ebf3e06f5b9b3a1361d994a28","sha256":"59364c1a11bb574f8aae73d0ea4dde62c6c0d30b5f319accce9a0210f2d4d93a","sha512":"eee7863479715c1823129e9dc96167be2b238d89b66c84467219566f2e5e0f7441bf1739320c65ceb6dd04a4aca467805ba159d67453feec2da611eeb2bd0aab","ssdeep":"192:N82Nv/Ooq0pQHpomKMhrO9vf6E3eKQOkz7w89cgfpoGBY:LaHjYdf336o8WGpoJ","tlshash":"bbf1cfd3129016469ccbf0fee7c5cbbf980e2de7893a9459e254e440308a770a1aac06","first_seen":"2025-08-22T21:03:50.490247Z","last_seen":"2026-03-27T13:50:06.694157Z","times_seen":13,"resource_available":false,"data":null}},"time_used":860,"timings":{"blocked":763,"dns":0,"connect":0,"send":0,"wait":96,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/active-menu.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /active-menu.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 448\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1c0\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":448,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 61 x 5, 8-bit/color RGBA, non-interlaced","md5":"d58b24fcf5d6e72848b82ab2d6e24762","sha1":"e278dc28f45542364f7c17ead8c368f304ad4890","sha256":"5f61944bffc3c2ea40d13efa53b606ed00fa13bb04531c08189cf15b8cdf7e93","sha512":"dc6609587cd2c818ec09524a70ee71a0320768ceaac72ae20610e4c5488b3b91591189c3a731f60860d92750bc2d05f48cf0e0a9fcb1b8a70ecd12e7b5dcaecc","ssdeep":"","tlshash":"67f0bbe9d3105630579f849fd041000140bb3237006b11b0d5cd1010af07495faeb77e","first_seen":"2025-06-02T14:09:36.122152Z","last_seen":"2026-03-27T13:50:06.694938Z","times_seen":22,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/modal-frame.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /modal-frame.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://snorter.claims/styles-4KCUWMZ5.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 7951\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1f0f\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":7951,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1037 x 464, 8-bit/color RGBA, non-interlaced","md5":"670319875b745193cf48f34e22418d98","sha1":"914d566d128abe314b6fd8627fd685055ed09c6c","sha256":"665fee89e9c672e65108509d043a0c640dec219c9e2f9530a33a0fcd344760d8","sha512":"096fda8a051759ea1ae62d20f4cb7a722299013aba317b3d6820c603be6de883a81a04b0040f413ce20c0c81f7235931279cb6abd98278e9646c6d40799a668a","ssdeep":"192:SeNYmhWrQpMTuMbvmwLd9fPuP7/abbgnAEqHAgnapZif:S9IW5TuMS0Lk/aM1qgZY","tlshash":"8df16b0b60364fe9c8c2a3317448b8c97b734b7a98589a0fd5f8cf02fe672551e0ba44","first_seen":"2025-06-25T23:32:50.903721Z","last_seen":"2026-03-27T13:50:06.695668Z","times_seen":21,"resource_available":false,"data":null}},"time_used":223,"timings":{"blocked":127,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/bots-bg.webp","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /bots-bg.webp HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/webp\r\nContent-Length: 226952\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-37688\"\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains\r\nX-Frame-Options: DENY\r\nX-Content-Type-Options: nosniff\r\nX-XSS-Protection: 1; mode=block\r\nReferrer-Policy: strict-origin-when-cross-origin\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":226952,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2c3cf4b7bfe4c34e29d4f8adfce66f38","sha1":"1dd78ba71c72de9b38ff0948b2734b30f5f0d518","sha256":"c19d1d72c35cf04d9477d366d2ba14cb9da7108b6fe89a88fa29a6caeeb53cfd","sha512":"612b1deb64d16689472252618b9a6cfaa71c8707050d4775e4aca470421b28419cdae3d1a73ba5f1cfe2841972edff0115a9121bcda7e07528d4a2da87604d5c","ssdeep":"6144:Ch24yayJEksLIxayRkvPdHS6nOef9AR8C+Mw9DudYI7NQ:CsfGky1KoJlE8C+IDO","tlshash":"c524220ae58e2e752b6c5e48bd1026a4dd063fade16068757f4467fa64fb0f1a4e23c0","first_seen":"2025-08-22T21:03:50.506681Z","last_seen":"2026-03-27T13:50:06.696486Z","times_seen":12,"resource_available":false,"data":null}},"time_used":472,"timings":{"blocked":174,"dns":0,"connect":0,"send":0,"wait":119,"receive":179,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/ethers@5.7.2/dist/ethers.umd.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.65.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:35.228Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/ethers@5.7.2/dist/ethers.umd.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 5.7.2\r\nx-jsd-version-type: version\r\netag: W/\"b996b-tlFUVYf2JXNF3D3p3apESxDe3z4\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 108751\r\ndate: Fri, 27 Mar 2026 13:49:35 GMT\r\nx-served-by: cache-fra-etou8220026-FRA, cache-hel1410027-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 168432\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":760171,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"71f8c498e792c6179d4e2840228f777a","sha1":"b651545587f6257345dc3de9ddaa444b10dedf3e","sha256":"a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73","sha512":"14371563e83bbdce425c035bad34a0d4ae6a2f2ae20ac183602134d8b8b5b5711874d40fbcb3c7344fab4f63237a2f0dedf65b7b458b870dbb8f64ab191a5d32","ssdeep":"12288:TfamYTKkkAJs8P+H8Xb2F/nNuwEYtnob6qQr:TfjkhPaNnN9EYtwo","tlshash":"35f43b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","first_seen":"2023-03-13T00:48:53Z","last_seen":"2026-04-18T15:07:50.749762Z","times_seen":3167,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":59,"dns":0,"connect":28,"send":0,"wait":33,"receive":62,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/bundle.js","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:35.229Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /bundle.js HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:35 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 2510372\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-264e24\"\r\nExpires: Sat, 27 Mar 2027 13:49:35 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2510372,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (11784), with CRLF line terminators","md5":"a579f43be016af96b1d14b0be3ab2239","sha1":"eb0403b0e34d6943a3242206f9845843fab6d225","sha256":"9b2c009690d8d43f3a351bc36362316b6474ce1fc03c24fdd1cf2ce2da5b2509","sha512":"64befe664a2fbf04844b475a8b918dd5feed48a9c77110963a9f589be8e19e04d3a98233a44ae343b1efe20fafe18770dc18dc10e39402e822bf37c63d081619","ssdeep":"24576:LREHMe8DbdUW4HlHZg+dY3yBgS6cUKZd3NlNUQ4G1SE0Byz5o:LRIMXDbdUW4HlHZg+dY3yBgS6cUKZJNW","tlshash":"60254c9072a6f07603a755d864761101f2385854700d90ecfafc9debbfa988a867ff39","first_seen":"2025-07-26T22:48:52.272458Z","last_seen":"2026-04-13T01:12:09.51568Z","times_seen":647,"resource_available":false,"data":null}},"time_used":439,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":344,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T13:49:30.986Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T05:23:21.357451Z","times_seen":13922919,"resource_available":true,"data":null}},"time_used":532,"timings":{"blocked":532,"dns":0,"connect":34,"send":0,"wait":0,"receive":0,"ssl":156},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/css2.css","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.232Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /css2.css HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:33 GMT\r\nContent-Type: text/css\r\nContent-Length: 7628\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1dcc\"\r\nExpires: Sat, 27 Mar 2027 13:49:33 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":7628,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a945690afba190bdf35bdbc8dca91152","sha1":"d93d79ba5c4ff541fb62d683c5d6b488b9f53ba8","sha256":"e3588f89e8f3d36d7befdcd1ad777d37963acce98132704f84f1d7ab2d5e1b4b","sha512":"72a22e14d311d595ee72e60b3ae2692c0cf6745594fab8f6f60c522f0f91a227d67e0dbbbc34e4fdfae78e152a29498981398ad2f56e511e7abe26664268a393","ssdeep":"192:9/NAPt34yaDD/OnIt3/ha8G/rKht3iIall/E5yt3RPaGc:JwSfyGKVm","tlshash":"ebf14490046b9400eb872cd277cf7f376d9da148a045c9795ffd1898acded2613a1b4d","first_seen":"2024-12-17T11:31:53.647668Z","last_seen":"2026-04-18T23:07:48.473121Z","times_seen":464,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":199,"dns":1,"connect":36,"send":0,"wait":99,"receive":1,"ssl":162},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/white-dots.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:34.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /white-dots.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 4231\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1087\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":4231,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 648 x 191, 8-bit/color RGBA, non-interlaced","md5":"cc7ea60c36cca0de394054448931f630","sha1":"2db38f22eb319858de1f5d8dd77e607f3dc5e64e","sha256":"0ec2972b0cdc0081da42648d62e110a9e5c69c0820cc27e9c5c8381cfff44cd8","sha512":"a6a2400f1e846684b0015cfadf7ff136649e33d35188474cf7c9b5944c1dc35b2db5b00b855ab6c4240ce93f6d4f1a6a8d37bc28f2fb9aa4249aab1fa0848958","ssdeep":"96:ZSLy9fb8tmGOuPAlMGYsRWoNx7Svl5Yak53Ecur:ZSGmtmG1F2avldO1ur","tlshash":"2e919f706dc876bafc5102f2b5d16edaddf22301e5a15965f7021c645a58f2b2883ec3","first_seen":"2025-06-02T14:09:36.074437Z","last_seen":"2026-03-27T13:50:06.699985Z","times_seen":22,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":86,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/bots-top.svg","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /bots-top.svg HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/svg+xml\r\nContent-Length: 46350\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-b50e\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":46350,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dd41a2b251f7fa2b5b1afb5038376488","sha1":"33c24dbb2559282fdaeea6d617918a560148a0e9","sha256":"e2f2b6293b8bde6555f9dd2502fabb6e700e9984eeb186397cbc627d20a6652f","sha512":"eac5f7b299de69f0c475e70cb9a633103df03e0da5ad5e47ff5e47a65cca64b7e23c3b43765314d622fd17e21fcfae594a5ddf931692735ff1cb070dc0bee7d1","ssdeep":"768:jOQsc/csvPi0lUt25BChROik+7wVAF8/3hq5KWS1p:NEt2cRyGwv/05KD","tlshash":"9b23b5c473b593fcf002f3f98636a8b17e5629e97611c9a9c3b12d41e15206d4eaacc7","first_seen":"2025-06-02T14:09:36.126682Z","last_seen":"2026-03-27T13:50:06.700776Z","times_seen":23,"resource_available":false,"data":null}},"time_used":841,"timings":{"blocked":747,"dns":0,"connect":0,"send":0,"wait":91,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/audit_1.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.276Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /audit_1.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 4484\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1184\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4484,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 73 x 83, 8-bit/color RGBA, non-interlaced","md5":"56919e88a6d0103c71a4a78e1372d5bb","sha1":"3a51785140aed946364ba9ba125e8f76975cc60c","sha256":"0b704bb0ddb4b2f4eb319a7ecc1750c90668f3b03006e10f8e9e8274c9b3edae","sha512":"0b956a85c6342f6b35566e8a7f6d1cc7cf7985d054ade0def0ff1fc0dc311faf6ffa11fb6e358ee96e8491f0245ba334427e4abb35ad55c4d95e463107110867","ssdeep":"96:sxIy4ca4wURxinYcnn/aWS+c8sJHDHag5lZ++LLpCsXgMdTg:s6ybwUTwYcn/XXcpHa6/BPpFXZdTg","tlshash":"6d918dfa5fb402f8df85cd1cb0d024a24c7e3085ca89765c389d1d81fa18ca6d676de2","first_seen":"2025-06-02T14:09:36.091454Z","last_seen":"2026-03-27T13:50:06.701913Z","times_seen":23,"resource_available":false,"data":null}},"time_used":875,"timings":{"blocked":778,"dns":0,"connect":0,"send":0,"wait":97,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"snorter.claims/banner_title.png","fqdn":"snorter.claims","domain":"snorter.claims","tld":"claims"},"ip":{"addr":"144.31.66.249","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://snorter.claims/","date":"2026-03-27T13:49:33.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"snorter.claims","organization":""},"issuer":{"commonName":"snorter.claims","organization":""},"validity":{"start":"Mon, 27 Oct 2025 14:41:41 GMT","end":"Tue, 27 Oct 2026 14:41:41 GMT"},"fingerprint":{"sha1":"79:C5:A5:88:5F:BD:46:83:57:B5:C7:10:52:8E:7F:62:2B:64:57:16","sha256":"D8:24:A5:6D:08:F6:21:B2:06:BB:DE:C3:80:85:22:4E:D4:22:51:3F:14:DD:1B:CA:E4:E3:66:17:48:D3:65:70"}}},"request":{"raw":"GET /banner_title.png HTTP/1.1\r\nHost: snorter.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://snorter.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.24.0 (Ubuntu)\r\nDate: Fri, 27 Mar 2026 13:49:34 GMT\r\nContent-Type: image/png\r\nContent-Length: 115720\r\nLast-Modified: Mon, 27 Oct 2025 14:41:40 GMT\r\nConnection: keep-alive\r\nETag: \"68ff84a4-1c408\"\r\nExpires: Sat, 27 Mar 2027 13:49:34 GMT\r\nCache-Control: max-age=31536000, public, immutable\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":115720,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 908 x 215, 8-bit/color RGBA, non-interlaced","md5":"ce586d4bada4e3afa9aa83d058bb7c65","sha1":"6b912b6a2606f5d54c9b1a7627b753fdf58eff18","sha256":"5af502a657e9ea3c3b4ca54e1c68c4261434d12bd6a775ac87b3219e7f7371d4","sha512":"4bbfcea1dc212d2e0fcdf76378aca7b9fdf305d2ed639bcc4d64ec9c793d3ec62e08562f63fb7e52dd8b41e880169807abef8b15e2c9c16120a77fbdecfadcf8","ssdeep":"3072:uGRvKavBTzq3OTECNU2vzYNuWMHADGTUGNW4zZ:uGtKavhzq3O/UEkNuPSgM0Z","tlshash":"a2b312e0369a4426c8fd0df1d72158f95bedba06afc52c1b334ee008758d1f69a22e5d","first_seen":"2025-06-02T14:09:36.048443Z","last_seen":"2026-03-27T13:50:06.703079Z","times_seen":23,"resource_available":false,"data":null}},"time_used":1038,"timings":{"blocked":758,"dns":0,"connect":0,"send":0,"wait":126,"receive":154,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"snorter.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}