{"report_id":"bb9eb8ec-c787-45a0-a28a-7876ff874789","version":6,"status":"done","tags":[],"date":"2026-01-30T06:36:47Z","url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"104.21.25.127","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"title":"Aster - The next-gen perp DEX for all traders","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"104.21.25.127","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-06T06:36:47Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-30","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"claimwindows-asterdex.com/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}},{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-30","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"claimwindows-asterdex.com/","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null},"summary":[{"fqdn":"claimwindows-asterdex.com","ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-28","domain_rank":0,"first_seen":"2026-01-30T06:01:40.531759Z","last_seen":"2026-01-30T06:01:40.531759Z","alert_count":1,"request_count":32,"received_data":9669389,"sent_data":15293,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"1e21743cd2ee2004cd56bfc5c29e3609","sha1":"bf516634ffbcfd3186b71dafc0ecdcc47894c439","sha256":"0e428980439e794b176e0ee3cd84e4878510b1d52c1efc1c00f4af9729a17029","sha512":"4264e5ce5b4f3acb24046582388132a5915398c9266c18c6349d75fb94bd74bac990dc6ebd12e1e118a3a24752a3e4badae2faabd69b9827d1f223a0750da4c2","ssdeep":"48:atoyTqSsM+c69M+c69M+c69M+c60778KK7NaaM//M+A:atlDNDNDNDl778KKw//M+A","tlshash":"25913f32165427da63ce8fd45a85751d01d2c89a383e60bdff3279eded3a683c031612","size":4506,"data":"","first_seen":"2025-08-01T04:16:24.215618Z","last_seen":"2026-05-25T12:13:00.242407Z","times_seen":2989,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"2380d391cf784bce2f77e0e16fa2268b","sha1":"2b88cb08e3d7f56772d46fe1a10d84774e8728d5","sha256":"e65fcff70fe965f3d1878fe515a7ebcd265dfe61b15461521450c882e8d081d7","sha512":"0f3264af3a045928be20d2ee1ef3af905571d07e3fc25eaeda22199baca89b8c9bff94d90d81124ff45b16c5e40df291c2f49d9464ba901d2d961f6fd1196f1f","ssdeep":"","tlshash":"e6411b1e00aa0aa31ba3054333ce846d0956c2cedcc73534d3b27f8134c67832a93bea","size":2254,"data":"","first_seen":"2025-08-01T04:17:54.882582Z","last_seen":"2026-05-25T12:13:00.241911Z","times_seen":2882,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"3433c9d3e9b7e8e5b34ed72e309db572","sha1":"d53d7df082088749c1df6b08330ee9b9e4076932","sha256":"1d96fa9904e3743570bccd5be90e83fd91975299f374093cc6f723673d582dd1","sha512":"ffd0e047331871f21738643968b7eb7fa045ee0e45346a9ea986c4b8a3e745dd310542c6b2734f6d244408bba6548ec66f5cd7662c69485b5e59e3b9432cdff2","ssdeep":"","tlshash":"06f04245bd825a24d35670ddc41f978cc53690dd91491c4cbb64ece1de94c2cdfc6534","size":585,"data":"","first_seen":"2025-08-01T04:16:24.219641Z","last_seen":"2026-05-25T12:13:00.246333Z","times_seen":3056,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/orion.js","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8256cac1bd4bdcddf5d245ee81fcc52e","sha1":"9a6dedf90a6703f3b2f4cdaecff3226bf689d201","sha256":"ab8c63dd12dd03136ccd032e5b3884c3d6fe72a9a36d8bca6bf99434332dd3bc","sha512":"2a46c67ddb2cb0c7680f68bd4d0e622ead7cc38a0c8034cade6f7bbde1a5c7c4bdce17e489646a28af1126b87c1f525d723f2592bacb4fff47001ab15727965c","ssdeep":"1536:9kaRasaz1dd527mjiIs113usHqBYLsVFX5saB:9kaRcz732aiIsVqBMs5saB","tlshash":"37b340d6594bd0d58e1a10edd077ec09e0681aa3cdacf183ba2cded2755df22884763b","size":107989,"data":"","first_seen":"2026-01-07T13:23:26.426463Z","last_seen":"2026-02-14T09:07:38.758383Z","times_seen":45,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-30","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"claimwindows-asterdex.com/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"2fbedb0b3347993aaffda511427d5ef7","sha1":"e20ab6a72f14d0d94e111b2f7b05c3260c936a07","sha256":"0d5314efb310b706bb73a055d0863a287a2636eb5e9eceae221a74a5895a94ec","sha512":"252650d07bdc4223ba829bba1298a0effa6d343cbc58d9651350bb49138d3baa710235fbc428fbc8f5b783f8531f4527b67751143b72a75790efe8f217e525b2","ssdeep":"","tlshash":"ce01f65d27f332b9627f2162d2038489be50506370dadc49741c91894fd6e6464de69a","size":657,"data":"","first_seen":"2025-06-07T13:25:17.713531Z","last_seen":"2026-02-14T08:22:12.898758Z","times_seen":117,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"e7cedee5f4aabfe0f0a25596641b0073","sha1":"9e90df4076abbd3350295826c5ad3ec1856ffd56","sha256":"c2e60dc68f09c70895f8cb98a4a88e16cf3c691d5a96b9c93c3aab931eafc258","sha512":"17dc0e86fcd7af709d5ffb50d255169d2300566d30c2da4345505703e6a6ebf303df263db9561688753bc03af86b134ccfa9f763966f8612ef554be796d6c025","ssdeep":"1536:jQe6pw4biVcuVXdWAgB1PusH2DY7sX3lX56oH:Me6KBVcuVtWAgR2Do2X6oH","tlshash":"7fa340d59a4bd0e08e5a11edd077ed0ae0281aa3cdacf193b92cded1355df22c84753a","size":104467,"data":"","first_seen":"2026-01-07T13:23:26.460119Z","last_seen":"2026-02-14T09:07:38.76649Z","times_seen":45,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-30","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"claimwindows-asterdex.com/","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/e36adbc2-a402-4ecf-a27e-354cef47f198","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f11bcdc7b7757c117a8de0db3a4c25b8","sha1":"962e4d08a960106c829d0f9d492d7b891927adab","sha256":"b60b89c0c92cf57329c8590a2c5540cece4def64e4e7bf04f2d39b8ffa3b2748","sha512":"7461553dadb09db423bda8c47a58f8cdade82aa710a0f4415cde912e7a88cd4471ea86aa58a2e5097c90e2cb45ac410104019c56a04c35955e827f0bb0796040","ssdeep":"6144:vkWGL6BSn5NGCk3zi0mCw8wLPNU2HZjGfty3:cjkSnv1k20mCwFnHRGfty3","tlshash":"1044810609ac4f7986ec22e015f72cc401794e0ad9dc3cbfb9ada1579e25bd6e0c279d","size":259964,"data":"","first_seen":"2025-07-13T03:04:16.940864Z","last_seen":"2026-05-21T05:02:54.859644Z","times_seen":5031,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"f278e1582a6b32d6a9a05328bba73b0f","sha1":"02780b645a044990e49787663d3dba06626b1e3d","sha256":"07317dc90130ec69ed8e07a8362168074f9067473354101f361449cff37110aa","sha512":"08463b63ba1654bf203117d8f0c0a2ce4b5d92914ffba7c8ac3d942ff1a812c86cc61d9e840e5f3422c2b22d1b71b1a06b9a6d40d4e4259b32fd8cd40cc8357f","ssdeep":"","tlshash":"55319948a43216904242e8f1c676abeeabe774080574446d349cbec7eff8447e521678","size":1529,"data":"","first_seen":"2025-08-01T04:16:24.221852Z","last_seen":"2026-05-25T12:13:00.2429Z","times_seen":3020,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"59a13eef9e5e0ec7844e58e8b47d54a0","sha1":"0fb2b2059a878b87f8524284d448dd46a4351953","sha256":"c890c150b008d069bfddb86ee2c2e3fe979515939053b4c53fd6853b68e4fe35","sha512":"7fcdb614d30b1141e9a1e134a98e2888007f786f866c24e6383106d3e003f094e72901aa295e7d3450fccf5a249b25b436401a5b9439205da6b0eec8d72cfc80","ssdeep":"","tlshash":"33f0beaf336126ca23ae6ad20796c01d1e72e4ab3002163c575a36ca0cb6f52521b07e","size":494,"data":"","first_seen":"2025-08-01T04:17:54.874483Z","last_seen":"2026-05-25T12:13:00.244808Z","times_seen":2851,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"a97d6ef5abced657bf5d46b969b239da","sha1":"212f1fc55f39b82d41e88c7628aec3b33d263afc","sha256":"fd3d3ea23ebc1d6ff9299cbe2cc651dfcd714b9be828c8ca2a81540e2f85eaf9","sha512":"6f35480a04c1360f72ae3d1dec34f1357b49fb10a7c7e6de8124e33a87b075127206686daa9145d40be27c4dd761f078d085a1f2538567c714ede67f66122c7c","ssdeep":"192:7mmQewTVPeY8DpuTM3kpVg9LuKXgnudSWXLPKPIlH4SjmnUYsCc0V02Y2pE2XuCh:7mmQewTYY8Fb3kjgTtLPKPIJgcx0V02l","tlshash":"8732c5b06a242ad911d604e20ace4f5d74f591611179dc249b3ef28a2fec3cab7d37a1","size":11308,"data":"","first_seen":"2025-08-01T04:17:54.885074Z","last_seen":"2026-05-25T11:10:26.297372Z","times_seen":1266,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"0e1ee9f442371606d9a13b41a0dbeaff","sha1":"a05c25c8ad9127fe7d45319ce13e8b4a485d2e01","sha256":"713285cbc0cb910dfd2e7a86c604d191a27789ae50964ab1c674507ff4a20c45","sha512":"1dbac9fa1e0b338e780a3600f1a3da140a6c83a961a1d0c6c80fe3dc5a9041c346c471d264a07ccc87457cdccc2a28b768d02283512ba9cee0fc2e2b7124e42d","ssdeep":"","tlshash":"0221fedeb2826488526794d742cd8dceb8e617a919008c20452ef299225c3e8fb6ad54","size":1177,"data":"","first_seen":"2025-08-01T04:16:24.218288Z","last_seen":"2026-05-25T12:13:00.243389Z","times_seen":2939,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"claimwindows-asterdex.com/7833f54131912576.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /7833f54131912576.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-6e43\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N73FZvDvFQx7rzEh4k21AAABdmzpsmt6n%2B62qmkq2NXrOzgQYWcx%2BFYygDBFye2NEuj0IH91AL1R0l28E4Br5GEUjhPbffEZVLVqdQT%2Bq27Ox5TJPfNB\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c3fe656bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":28227,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (28179)","md5":"303621ed64f5950917535201f5db003d","sha1":"6b9b890aa4fe101969a4cf32b2eeee0e2bf820ce","sha256":"9386bf29ca13f8a5e6e20b58c8e0c0ef254de5ab8c6e3150deefad3b75b09fb6","sha512":"f737bc7d08c941bf12de25a4ea1795cc09da9b417a2c9da4c945841fd031a68ce2ca17f3568ef9b55c9114387cbab046fbef312eaf3e2aebcae8e08f3767d8ee","ssdeep":"384:9sj5g7OIMq1OkkFK+Pk/DXr6TclhTLfkRDJLZ:9sjw3AoPhTLsRDJLZ","tlshash":"64c23228f686503b7c17e0eab388dcac855575c58e650eabfa522954c7d23f36cc236c","first_seen":"2026-01-30T06:01:50.289557Z","last_seen":"2026-03-27T23:55:55.574638Z","times_seen":4,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/aster-hero.mp4","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.773Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /aster-hero.mp4 HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1251022\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: \"6979d6d8-1316ce\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 2116\r\ncontent-range: bytes 0-1251021/1251022\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=L8rcdhWbN%2FXi%2Bo8DjfjY00W3WX88oH6LSClyFuavFvkG2EbDHSPYz%2FePwVaTKuZ0r0E%2FaaDvAyN6AK56dZYQBTwlcG9U8EjBWmXE2kXp9Alc3lid0WyW\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46ed80a56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1251022,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"07f0100f3aff615fc0bbdef8b76cd0c9","sha1":"865aba5a0bb87e3d07642e05e18c3558b4deb82e","sha256":"389fce400d00855164dc62d5ec8a687db3096be69370195a2c469d2bd1871e23","sha512":"c42f5e60eef751edaeedb0e9eb3477c7941178072f9ed2c7e0bdcdf3bdb4bf5028e98475ab9320f8d275d0d6f0f8e07ab361c793e02fa036567d4e87d4224dbb","ssdeep":"24576:eMX7Q5QZO88A8yeEfLxx9aAyRdqZ4HdPh4TjkumLz:1ZO88zEv8AyTt9N","tlshash":"792533169bd8b995cc52e57c8dce6381fd94ca3012c443e73cbea5510683e9aeeac35c","first_seen":"2026-01-22T06:56:53.402412Z","last_seen":"2026-03-27T23:55:55.563378Z","times_seen":18,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":12,"receive":172,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/hidden_order_focus_m.webp","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.405Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /hidden_order_focus_m.webp HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-d794\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tCVj6rZiLiIrkYGdys3dKMscHTmz0D%2BImjaQ6gnUxto6%2BQ6TUWtI9H5%2F40f2QUjfO9mRWNRuCrFW%2BfgAiGFUvJCMTaLJHWR3lcooTXAbhP7K3dOemZp%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c6ff156bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":55188,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6c23624beaa0acaaa6dac7943446ec53","sha1":"91d7793df9bdaba57f7a7e44bfdf8e485d288ea0","sha256":"356224f43a4c7ec24d9b89689926cd661566ce2aa809d442cf48d4895b5c16c3","sha512":"00deab74649bb0d1d57f58ddfaab4df26169ced7d288d7463ac78e307c577827455bc930465180fa87add448426dee64785d17ec6bb8558e2b86b39c23c32527","ssdeep":"768:jRwfA4Jij98i1dhFcNwkGSVLn8/vkApwKo/P9pqGb1EqpHoO7ys7yEQc:yiXhFowPSJYnepqEHpHl1ic","tlshash":"494302b86350849bfeb5f9dded3bf880d415e306079fed84a69840b57a8267c1902fb4","first_seen":"2025-09-11T10:22:24.729532Z","last_seen":"2026-05-15T05:55:48.974489Z","times_seen":84,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/4f69379355e98148.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /4f69379355e98148.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-1081\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=igKETTvL0aYk0DdKm5nK%2BagVH%2F%2FcIG6k2JHLLM%2B0P4DXLeKPa95t7hjFSTmyywrWC6DenYHxdzpp2X1snrv6gKAZ7DBu96CeKlf1WUTzh88gFqIECWk4\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4fea56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4225,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4177)","md5":"0276b8d94ef8334eb5c7b40a9fb114c0","sha1":"f15018c6b62e3685e4393eeff28586cb2ab5ead1","sha256":"caa7b215c821cf074c4417f2c2cd321e3ad40ec960924edd287f8e27e62b8a6a","sha512":"c45004ffef1447635cc65ebec953ffed52bd7d721187687ec629898d54c0cbb029c645a66099ad85509bbe72b930d885655192caeb866acb5cbc4b11a921c1d8","ssdeep":"48:sv9DP2352gmpCd8g0+71zH1f5LpSFSme+jeBhIOXIWI4mEuL/onA9/85Hg75+m54:TJToi95dKSme+jeHoaapU3Eyw0DZ","tlshash":"ad915630a3641c2791378f385784e6bd63e444618bd3892ae785ae3cdbfd8f5114e782","first_seen":"2025-09-18T18:13:43.845617Z","last_seen":"2026-03-27T23:55:55.586395Z","times_seen":28,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/Venus.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.413Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /Venus.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-1536\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S1lpqjvdvI41G%2Bd5npfCmiPMFWpcVFPVBs8VI5F4CElDapaYU8AcUSB2ilpsuM2sZMgBi1z0XXmdQ0WQWu1NwFSuabxl9nR2eQtiFKfxL2OHOxO2MDev\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff456bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5430,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ad4682efd457e5a8f14a5007121437a4","sha1":"ed995110ce331714798e77a491c1d7d6208819bb","sha256":"f183661df9471223ca5c78670a4484bb2c1bc90c2cac7a933684abfd9e7c4231","sha512":"b4399b733ff03d9d0074d5e40c40fcc17898cfad9c21776f6f738eceb833887003edc23c61bcce4fb76f979c25b178e1df8618cdac3a2505176893a2eb4019cd","ssdeep":"96:fWvS1Yox+0R2/y2SCDJPRGloc32wZS88uRYEiwsa6LrSD/bE9z4B:4O+0cTSCDJcl52hBIuag9z6","tlshash":"68b1d9803736aabef51af5fe1b26643d6d0320fdb1c48261c3d56d19b20182e5d4e9d7","first_seen":"2025-06-18T19:58:19.039066Z","last_seen":"2026-03-25T15:14:54.586179Z","times_seen":88,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/Pendle.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.432Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /Pendle.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-101c\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y3O2ahsDaI0rsYRH6i%2BMLRfCWTxCp%2FxPmqDQcj8uCT%2FcMglZh9tDvlN83LxI%2FD8TeIvw%2FS6I8tTOJ27ygr4Ly80Tw2z6MoUvK4fzfBY76BjcUuCkv3U4\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff856bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4124,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c08c5b15f8985a9f5b17c1374fde2fe8","sha1":"1415dbc72e7f7b69002276a1f298481fd7a0ef12","sha256":"9d0d5d955ecc1aa6360fab186996cb83359e807c81e67e757737e25f241d34c7","sha512":"521993122e51c333aa4c4355a58716a35db82aa7ef4f1379b73c908e17b2828782808a268599c05e5d977791208a3ae1f4293c478564c871f6823b5600639d18","ssdeep":"96:zc19SZw64la1ZiBgM4fw8MmxdkcD+4gAdRB1iwHkWqxtqsH:UEG6n1ZiBgMH8MrPAr4wHkW3sH","tlshash":"0c81a8cc3729c1f8e905faff6b1220b93c1324d6795581d8c7b98e2e3d530695c969d1","first_seen":"2025-06-18T19:58:19.056161Z","last_seen":"2026-03-25T15:14:54.592856Z","times_seen":87,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/006ea9b979777b4c.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.387Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /006ea9b979777b4c.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-12b4\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MgnRskN3Oa37np53ZOZlGcb3gqywyWQYyOfQ6J1d0Kz04Hf92KrXqjR8zLm06G4O4Q0FkGe8CrPAxFwTuYJHlzsdlUhcSAAtQJVjvn3nxeBeu0fG%2BpnK\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c3fe756bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4788,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4740)","md5":"2840b63aba94c09ac20f3ee55f6ff300","sha1":"d4b2b932516070d75168705d036e133ae9360581","sha256":"56fb75d42369a38f7e669b11101b62deff29c9626420015b242a6fbf605c33ad","sha512":"19a33be87747718ef8c5bfd9deeece701ba4a181cbffcbf9270b4f215a08bb45b955f0572a5f5332252c5f358f59e02849c9d2287f8fb8ff1200c9497b89dc18","ssdeep":"96:KPEqLoIFgcOQ6Qg1iKdKZMpM5U6x4/GXYF3O4uE47Hnqh3aD505iqX8XFXgXcXPE:KPEqLoIFgcOQ6Qg1iKdKZMm5U6x4/GXO","tlshash":"0fa1cf428f753728f63bc34e3d928ad5f6d48f81b429553852a7235dc9cf04a0a6db4b","first_seen":"2025-10-09T03:32:58.040834Z","last_seen":"2026-05-11T12:52:48.118236Z","times_seen":83,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/trade_BG.webp","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.404Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /trade_BG.webp HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-a3776\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bIy0ON5hAoCUOGz9ACljZwo9B%2F7mbDGttSJL8b5llHQzYJr6JgyS3tz%2Fpzim5jByL24Wfw7pz5aYOPkqsAvVDF8f5bXyaX6Pmhp3DAJ0rRshNS9OLE6%2B\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c6ff056bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":669558,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"c32f9d60ce60842faa8d040d9836b7f3","sha1":"0870bdb4b6180d8270881f905e4f27d38d511bec","sha256":"9e6c0211b491aecf190e5750284ae6c34654f181095026c2805fb770b8432bc7","sha512":"52202afae2c72d109ddaa64bc680bfec0a4180c0ef71da2a9089b6878ccefaa21e78d07de85062c12a08328be079c3ed169086c632ecca265fb67d431fe82cdd","ssdeep":"12288:0+jZJ3uzPbr3UQdNNoxNjLj3oOt5ex+yx8Wjyv8lL3Ib4LfLBYnb6uDVYfdAgwSB:0cvoxdzo/j4Y5y3ryklL3Ib4LfLmTDu5","tlshash":"24e423c402cc34f1533e41e8c95bbb465b48d7981c9ab970d2ead52f6648f8ef8e45d8","first_seen":"2025-09-11T10:22:24.831399Z","last_seen":"2026-05-15T05:55:48.969607Z","times_seen":86,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/PancakeSwap.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.426Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /PancakeSwap.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-3940\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZG3JwD1iqarDP1%2B38OSKvaF4ruPPsjEaHq1Wt4lSZQ4fOo%2FolwnNm%2FudHSOpvkc4XnORJ3IlDXVw84r4rBfCS3kKVt1EWR4b9CGPWmUM8vjiD2M1O3rR\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff756bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14656,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"791c3ddb1ff00789fcb1df684744ff74","sha1":"6c097ec0b3dd7890d0fbd99cfa1cd1172a60009f","sha256":"a44f9e23def289d04d0d599287ff64bc10665f69f13e6d5b6b09bdb51ee4113c","sha512":"c4068f0bb4656daa6d2fb9d126f222f2639b009c7b9999d38105136ed2038c09fe68649ce88c0241881168032a00c08a1148a794757efb291d9e79301a502f17","ssdeep":"384:b4Hs1P/vT+4u70wgflsOqzhWP/I6qFRhQGal+lpkW6rrb8JSzZwMK:bpP/LO70wclsOq4Pw3/al+Dlcrb8aZw7","tlshash":"176284cc2bb8a6f5fc85f2f72f113cbd7c0284ee95598d91c3296e0a714891a3e469c4","first_seen":"2025-06-18T19:58:19.02853Z","last_seen":"2026-03-25T15:14:54.593427Z","times_seen":88,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/YZi_labs.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.430Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /YZi_labs.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-14ea\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=A9Yz2krSgJwlR8sF6w2UnkR6FnY5uCmEUY42eDRk31xlEj3%2FrJXC%2FzyGaF4xnBCe8Wk%2FtUmdeWwQuTRTqtmyWSb7ThoFv73BQoqxtj83yvjIjAh%2Fs0Ig\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff956bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5354,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b1ae9db540abd2322d8406cded71cd5e","sha1":"c77394d8482279060aeb420221da5cf6d6a33441","sha256":"0db1289801ac8350725e9f938f80f8ad0e8effa26faa194ed6b568b86553e3e5","sha512":"fce068fe5c8bef7ac2cb7b8225826a7f913c4cf490cef03ce3a52e5e06bf3e1bafe84f5892b64278feac8cbd4af58c9c77f18abcf034f9d8cc6cd7de4182e9c0","ssdeep":"96:kxH47jtCqNnVt3DgSchOZIs0oGgt0NU2Wp4p/jdXwBwLXVix+:kh4EqNnvgh8IvoGgtFNWBdX1LXoU","tlshash":"f7b185e8377cdadaf868b5fb271550b4741290fdea4dce84c766ee293881c351d089e2","first_seen":"2025-06-18T19:58:19.054114Z","last_seen":"2026-03-25T15:14:54.57759Z","times_seen":88,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/aster-favicon.png","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.761Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /aster-favicon.png HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 7865\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: \"6979d6d8-1eb9\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 2115\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QBSYuzDN0LHkIL5KDYx3UlfWiMn9BMdKQJROw4IuOjucgbmNFTCsWKz7TvNZJy6H62QwCI4d4ZnK8nUAABjWe9frcjONOrfPwTXkYkDaUS0PeZYnvEwQ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46ec80956bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7865,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"ec46b6c8a59c8ed2d4cb0360950a0dfc","sha1":"8af01d0c2440599cbd0adda5726c5cb5f89737e7","sha256":"edb4014b073d69c293e4f5e2f54c8b5eb3c2f3642b2298e56ef2487292f07577","sha512":"0c8ac7f2c40b0597b8fc3f7f756bc9970b5f6ea414e7c798943714cb37b0e212c6419602326a3c272d11ae3358ea562fc5161eb3d46422fc16aa9550aec1f0a0","ssdeep":"192:Jwcu6wfZcn/104g7xZ9vQzZEEK869f+hBpbG3:JB+MN6xZ9vcZhpnVS","tlshash":"5ef18d9d2bc88180c94c9cbe57e0451fa7f38a050f417d2373a878fa2e3879a395d984","first_seen":"2025-10-29T01:54:59.561114Z","last_seen":"2026-05-21T11:33:40.64852Z","times_seen":68,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/e8012caf56604ba7.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /e8012caf56604ba7.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-491\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xt%2F7BDhgqxkj6LRbUB9i3JHctu%2BlDOwf3gRLLZQxg1PDhqXJ840N46JVrzl2tWlUquU9nxQqVAZU4TkypLJRuz%2BZ%2BP1qg942IEbrLpv3lfWO0p07kBnI\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4feb56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1169,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1121)","md5":"d3a5a0f39120c4926bd50998c1ef7408","sha1":"403ee0522773563d2ecfec0789938baf7385cc3c","sha256":"75928fd88004485fe637f691e7c3bf860515ba10d139fed580c11b71908d383b","sha512":"3286af3b7626ed74483ed8cb45efa28a84167f54b6dfcaf0ba6ef1bdb38cb12b9861a6d71778e5ff846c54ce35285bc963f540ecd2e67c24e5ecc9f265c0503a","ssdeep":"","tlshash":"88211190fa8a78bdfc67d10ca2e051ac420c9081f32f01d877552176a1c51c247fbb6f","first_seen":"2025-11-25T12:42:55.925721Z","last_seen":"2026-05-11T12:52:48.184698Z","times_seen":39,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/hidden_order_focus.webp","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.401Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /hidden_order_focus.webp HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-18044\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bLSn%2Fa9EY%2BPIJ69QlLs%2Bonz%2FyRojmiZfmuyItO7cOAr4606RdcCBMexmk1OEbmiDjyeVGbubKzyr1Py9cKy1L5XroglzE92smtFAUMc0Y%2FqEcHDFHITH\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4fee56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":98372,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e7aac6d45662a4600c1cb2687cd24cc2","sha1":"29388b62ed4d8dfeaaae32de8362beee99effade","sha256":"a9053605e8c9bcd6a9434b1a21049cdbfa508b7cb131ea4403540c0220d370fd","sha512":"af9975ca759d833c6e927ab2cba13b79a6ff286ee040edd68f2a077b70492a7f45b5ad20760557ccfc9f6a6657b4d7da5b57398bea9d1582d15fface504a578f","ssdeep":"3072:A5c5xyVnUpw6kp43LwQlooW7kvsMlr9k8PiuO6b:lKVUFkYGovv/+869a","tlshash":"d4a3128f8a761c420733d5eb27ca115463c06b746b5864f463a2bc7027bf94ce6eb972","first_seen":"2025-09-11T10:22:24.838707Z","last_seen":"2026-03-27T23:55:55.590544Z","times_seen":82,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/9c088aa33b260b8a.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/index_2.html","date":"2026-01-30T06:36:24.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /9c088aa33b260b8a.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/index_2.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-1957a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cQ0%2FGWAQ8pgPzItOFey5wo6vVofA%2BziyURuUHq1lnRRPuoJtxzznMyndHc9qD6MY4ym1WdZ03c5pCqbV4niW9MI1X1fD5uKCmwL9wM2OFQx4y538pS2s\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46f080d56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":103802,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65472)","md5":"e13a11e012fa1db1dd2b4700fcf2974b","sha1":"7a46e3d4b56bfdb790c897aa31182fda1bcc2747","sha256":"0ff8f931ef96c4a211c91cca2ad9dd9cb16d7bf01dd6ea38f2f9944246b40763","sha512":"14dd281c7324327abd975938b23c1f9c0365a861351c78d293941e4365a86130b62ffaf2d87331d0556b97a3f70ecd0addba85d9cfcc7fc0c352fec9cef9c869","ssdeep":"3072:MGShfVREBCm+2WMH9Q2wytybjrSWxDhbEgzx:MGShfVREEmvFtybjrSWxDhbEgzx","tlshash":"8ba3711df652113f3c2780f9c25cedada116b1c0ee3a6be6be4221118ac67e35de7254","first_seen":"2026-01-30T06:01:50.271195Z","last_seen":"2026-02-05T12:04:11.296689Z","times_seen":4,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/secureproxy?e=jscdn/getFile","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"POST /secureproxy?e=jscdn/getFile HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://claimwindows-asterdex.com/\r\nContent-Type: application/json\r\nContent-Length: 37\r\nOrigin: https://claimwindows-asterdex.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":37,"data":"{\"permit_key\":\"eo2upuit3j1bi7kc0oxl\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:25 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding, origin, access-control-request-method, access-control-request-headers\r\nx-content-type-options: nosniff, nosniff\r\nx-xss-protection: 1; mode=block, 1; mode=block\r\nreferrer-policy: strict-origin-when-cross-origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7lVfaD3RqN29nub6gsYCXsoU6NswObpekocEB3A1vGljBOOgXLvi3c%2FT%2F%2B1pdDHhkiuD8hb0AeQeBkIFh59hgC3IrGTlIFySJV8NkWmju9JxFQ%3D%3D\"}]}\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46f880e56bb-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4251591,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"cd3029d4edd9719986abd2c68ed7837b","sha1":"4a051b5ccc89c90efbc79c37bd378b3ee60631fc","sha256":"a54ae869f4a716fcc338aab7332ff2fe047c43e7ad47680b6bee914a863e9445","sha512":"1db6d1f38fb27fde2e34a0b3f4b65869097a6c15b6beba2f7a7a52a0542633e0b334d696cb64d7d672ba3802a7fdd8bc39bb269fe6f4cc3bc96e90230ea3136e","ssdeep":"24576:xMw2KtQuSmHNCX+y568v4zODwjGhmOcaEUpj5R+s:xMwEbkIOy56i4zUjY2EUZ5N","tlshash":"522512e7a087e0c22a69cc457fd05deea89a314db5d7063222ccdd84a55f0bdc7d89a3","first_seen":"2026-01-30T05:45:18.714536Z","last_seen":"2026-01-30T06:36:50.498291Z","times_seen":4,"resource_available":false,"data":null}},"time_used":647,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":263,"receive":384,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/d9be6c77befd9b1a.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.384Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /d9be6c77befd9b1a.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-360fd\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Zq0Q9eepFb51Av%2FReKi4gkTB4vhwS4JvvMr0dVovETmXKhX5VD2Ycq8U6FjLO63qO7lwJV4FTF4qlbioHBrPIsbtOX%2FK%2F5j0BkG5PusXYYUUFNKxL3Ut\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c3fe556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":221437,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65472)","md5":"acbabbc2e7d7a10a224cd429a9d24b87","sha1":"d911a171d39574242b7a0e327ee0db7585ae1945","sha256":"68ff584e911ed16d5f92fde2b4093e87819c525adda5456362157d6b01032604","sha512":"1ff5f6d38ba98bc1b0ad538477b349ae9cc83c50498dc83a3d8f8638a1dac7aeacc59232979b534d031bbe0cf4df28dab02960e0d6f6f68165f430aa6deee40a","ssdeep":"6144:oLyE//tCHifUgh9HJJBh99ym6lwVMKzM4UTMMPX9ZA87D4eAhXKH8fPcWYhMvxAZ:s9JHk3oRi4QwDBJ1WB","tlshash":"962470ada643617f7c2b80f5d268eddc9112b5c0df3906ebbe52151487c23e25dea328","first_seen":"2026-01-30T06:01:50.274471Z","last_seen":"2026-01-30T06:36:50.499929Z","times_seen":2,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/search_symbol.webp","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /search_symbol.webp HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-1a206\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WvuLaHARs6EWJGauQ3kvXjwlS9Qo4e52RxhXXfUziejDphmASFRrGNLk%2BoEy0L%2FrHRfjQdu6crenGhEs9r2MfhDHl%2FwCTWr7YiYhqO%2B6NRZYdGSO9FIh\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4fef56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":107014,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"3d494116e551fe0fe44f9e0e9327c1ba","sha1":"bcbd1949251ddc20359c1eb36736ad5dbc3d2369","sha256":"c6465c05e4503d791782ee92aa3cfd7bbc3909e4385b99a61093a086b50e6a18","sha512":"54a4e6de1eee09235f3f737e2f48fcad3eac3e161392ec44291be858df9705052e634c339f09b7e994797c7299d07dbbfc9f4ce4c7027d122e545651631d1eb6","ssdeep":"1536:Imd2XeDUBzkPhfeQgkPIqoKtMl0UFIoSOidxMxXhjbEuhVO3Vfi+K5yNKHXeF:IzeDffd5oIM1SOidxMDkuhciiR","tlshash":"45a312bd8721e98dd12c6e78db193fdf654c8c104fd4aac43aaa4c91e2542b9bd43723","first_seen":"2025-09-11T10:22:24.795566Z","last_seen":"2026-03-27T23:55:55.587144Z","times_seen":82,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/Kernel.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.412Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /Kernel.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-a28\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4Y07UmtL7kRK%2B25gyZhq97glEbN9w1WRzFmtXoKPjFv38RSG6HdG0wnMfMQdRuRnMlXn6lbPaTgHDREBS6xl02JRw%2FuT8l0eDJr8UH2bmqEknRbOlwwD\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff656bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2600,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"225b2ed992e4f06e01889cef476098c5","sha1":"843d81b4dbdc2e67f2a7993836b00e8a3649e0da","sha256":"2d3bb548ba384725ec3e0f9e40030bc506f82eccd0de4830ad69069adabed8f2","sha512":"3d9374341d084123acef95a894316f9f671a044e91306be1b49f0cdbf5f1c4dc7e052093424e2f8ca056e7d0fa21893f98e358a26226b3ed327b24f37249eea2","ssdeep":"","tlshash":"9351c0a4655cc6d4770ca7bf262f907d57aa04ddda9081c0cb072f0b7c498aa5e2ebc4","first_seen":"2025-06-18T19:58:19.043594Z","last_seen":"2026-03-25T15:14:54.585589Z","times_seen":88,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/index_2.html","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /index_2.html HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 2116\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0Zh2lPz%2FOKo2NeH6B3wU0wWknRDDq0TDwpK3V4zXF98W8eUlfO%2B9vBuk8Hkm%2BzWTEw4%2Bk%2FzT2sX75ycd5EFB7ZIR2ajRdQyPDjapZMXtXMEdZmR8XJEp\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46e580356bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1423,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1422), with no line terminators","md5":"e4448103efc0fc8716a47a64a6efc1e3","sha1":"1e7b9798aa6e20e7873a430bf3a195fbc458147f","sha256":"a064239461408e27d50bd67686e4b23f96fa1e5a87cbacea8428ffe1c9a475aa","sha512":"09acd8aa979bee0d89e445e85cfb2d7e174445e2290d9c194cf8ade547b7f41a5e020c27d66ffaa260338f3c7d2f63e7a2efdfb56e9598c6bd7a2ef8a5bfa002","ssdeep":"","tlshash":"eb21b6e16811ec08500b73eaecc9900c6803ff1ef70028ccaadd6819de7ea3c44568dc","first_seen":"2026-01-30T06:01:50.292998Z","last_seen":"2026-01-30T06:36:50.50433Z","times_seen":2,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-30T06:36:24.169Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9TFkGD0TvO95X9tnRaGA5V7LfrNImJSsi04dvBUWspXh1DIKyCvc%2FU96MSxY8D00YMWbDvG0zdwxxU2qhMorOrovK%2BwtsYOIQ%2Fj8eVVbY6gdtsPMMxJ25Bo%3D\"}]}\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9c5ef46b3bb6dfec-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":104404,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (26262)","md5":"01171b5f436fe68a7f0a11710063d516","sha1":"ee4785714d58d67ebe211a0013ec4162ec7bdc3e","sha256":"b3709ae1390bc007dbf19a15c7956ce401746c3fc1514c327e73a906791a94aa","sha512":"231a40ab29e802ee330ffc6dff78ea01d4c6b99699ad15b5b4a432ddbe511482698d7598f366dfbed21f6252ced8099a7d2b0fd5de10243dd298709d861c38d5","ssdeep":"1536:D8arTebx/c64Jysq7v0C9c+4XzoZ9xmc/RwObi4VMD2vBiCO7BKbRwJk:o4TeCCb40Z9xmnk","tlshash":"4ca35ce0710812786403c7f4f395f76ca059729aeb2b8499f39c1087ebc9be87d58a95","first_seen":"2026-01-30T06:01:50.31737Z","last_seen":"2026-01-30T06:36:50.505402Z","times_seen":2,"resource_available":false,"data":null}},"time_used":79,"timings":{"blocked":30,"dns":21,"connect":1,"send":0,"wait":12,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/d27b182f1b81e1a4.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.390Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /d27b182f1b81e1a4.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-578\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hRPJle2hsv7geDT8FD5pkFOpEZPcRJXFfUIXUPUyE03XGpORjPZiLmHq%2BwPkiPh1Atg9vWR1KDyKKcLu%2FMeo1GixTS%2FSySpF0At6JiOoabUrBZmIdXXF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4fe956bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1400,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1352)","md5":"d9081027acf5f0b6eccaf094aaa889c6","sha1":"2477301f4c29ffb9ad8107c7c2427f37eb42b99e","sha256":"32b03452b1e8d7aba364c7a349bef7a3f527b4858347df1e1c01b407d6c05f81","sha512":"d7f3de2b854edd814aa68344ddabe58033f41f4995d1669dbf6607839d6f095634ea1fc7792f2417aa5959d37f052003c9c959f11c8a89118be9232a12011309","ssdeep":"","tlshash":"da21b0c5de90143da197052ed1c5252c4b3ccd63f32749fd32a4a99d26412da2372a2d","first_seen":"2025-09-11T10:22:24.823083Z","last_seen":"2026-03-27T23:55:55.585193Z","times_seen":97,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/logo.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /logo.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-12c3\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wtp%2FbepNznEDHQFeUFI72Xl1%2Fu2AXQWBcnEANg2x8NB0YHO%2FK1asMqcEVL4638%2FpJSaz8LkS4mpLyY1dvYcmrJ2j1VTLwRFm8p51ZCmTbpMmO8MWj4k3\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c4fed56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4803,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"8f9e198f05523bcca4b508cfff77f341","sha1":"a4903a956a84a1d4caf637d0a0ecb5f65b0b5d53","sha256":"4e3a9edb0c107290610d1583aa3cb7bfc8f0b117e7bd07876425ad057b8b4e4f","sha512":"09b4f0723c656908fb221ffc30c2cb88915708423801540cd984acb9010af72aadc965e56b6ee617fcaaa2bc79a86ac56007fef7bad855d4951ad6c460b02d37","ssdeep":"96:Ox54g8YOpC4oVJZK8bIq7YNFpicDNkdmGV6Ph:w54N/CJDbI+YNFLI2","tlshash":"c5a182f9a7fad5e0ee14f3b8ca12d94a346b24ff9a85cf55c390be1824210cd084e9d4","first_seen":"2025-06-18T19:58:19.063768Z","last_seen":"2026-05-21T22:31:03.600856Z","times_seen":230,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/ListaDAO.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.407Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /ListaDAO.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-1dd3\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DCCKyW7EhhRhtjyXvzqCDofbhO9rylbLR9FO944aDYC8lMQbmH3MfAaFWoiHv9usG3SUe1ynkVhSF3n3ezuJzZTjPgc27UB%2BnP1zrqi%2FAWmNF%2FIEUplv\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff256bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7635,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9071f93f9111332f2dedcd25654ef1de","sha1":"a418cdbf06abbdbe586d002d8265a0fe22dcdf33","sha256":"ef37a24314cdb6e86906cfce29749aed94619ef74d34119e38d36b930fc37dbe","sha512":"87ccbf8dc29b97769cf2b74ad6655d76d3671d9cc5ed85881e7f7a668566a711ac762e874fd82937044f5c8a3be65079b6964669927b437fee84407e1d3a7814","ssdeep":"192:DXuuTK5m+raQ+4rEf5HjVwxxkcbgnnpyeOoXblRk:bjopBaHS3TwprblRk","tlshash":"52f185dc37688dfded85e6bf7b0184a93c0360bbb9ca0a50c7696e1c3485a265d09fc4","first_seen":"2025-06-18T19:58:19.052328Z","last_seen":"2026-03-25T15:14:54.584765Z","times_seen":88,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/Hyperbot.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /Hyperbot.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-1c3c\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F3m4WbeBTFnkzFfWlZV%2BgVW7duWfba%2F27YWSccmGM9zzXWfQM%2FGsZMqJL3plSDVQk2MC87f0%2FXY04mUEZnX0rUqA69WvHMeFWcC5DZHejG3CpZc8C1ut\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ffa56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7228,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d1c8d3b7d2cb97402ddc929843816f69","sha1":"48f53f0bea5d5ec0f0270695a1117110fc31c276","sha256":"62c14de125a70e24b706d7830a1998013c6f286799f4e4134c120a976779c7dc","sha512":"17ba2f3707b0951fa3db34a9644c70b31e0535b1dd24493ed1a95858c3982e5bdbdc1855e63af031631385c6fda76071942f2009bccc989fe233c4588a922e81","ssdeep":"192:kzlzIhrDfDhFOiQZXuaYeLtrPeE/kOw65f:Y1IhrruXucpqA5f","tlshash":"b5e1dcf4233eebf86488b3ea7f6160792c2661d6d6c949a4c3fe1f0e384a8504e54dd5","first_seen":"2025-09-11T10:22:24.835146Z","last_seen":"2026-03-25T15:14:54.590492Z","times_seen":80,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/index_1.html","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /index_1.html HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 2116\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JgaaVjTgU57mTTcFMc4Nh7P%2B0wP5FGuUzTQzTKELvXtUH3EriXiR4CQgATsDaTZS%2B3CpOCwYTRGa5hdYlQPRuslqtSQAhOBKlwyF4SPAJ%2FQywVO6X62W\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46e580256bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":234,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"9f27dd1f40bb0f7864a93ae3f46a4c6f","sha1":"6e1dfb9938011d2db198f4b85f84fbfa4645ca0f","sha256":"aa418254ba695dc661ce5e86e432318859d81c5f81452d67a7917cd090bc10ab","sha512":"3a7ad86b7d957475a8a9d7caf83945769a1358472a2bddc01fe70c0811ee5cecb48d8cfc5264825e5043778b407d4fcbfda65613f691fd7cd70273c7aadbb009","ssdeep":"","tlshash":"34d0a7f6921168052a8b77d07bc1f34c0106ff2dfd4158657abc6190cc6f1b1e85aa84","first_seen":"2026-01-30T06:01:50.287548Z","last_seen":"2026-01-30T06:36:50.510605Z","times_seen":2,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/YieldNest.svg","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.420Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /YieldNest.svg HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 2116\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"6979d6d8-2427\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2F%2F70%2FTt9YOQ0Cg1nTRulCi1%2FHOWB%2BIU8qtO2Ok7fKdC83qzvrcjC29oqcTL3iE0QM2yzrkhYOyk06vds0X%2BkuekQFD0EomDb3u%2B0I290GmAtjMTMK9FW\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46c6ff556bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9255,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"9e6987cfdc42e7d81d99c577494494fe","sha1":"72535e16b1b602ad090b5f78abdf7a9af1930079","sha256":"64a6cae24e25355a31a542f7bf1cb0f74bde2ecf485ab835a23946b503bbbdce","sha512":"12e58720d74e12ccef1cda4ed87df5d79da4cc61863246a4e1a86071c54ca2cd019d4fbf8d03df0e2d1d467ba2ef573961c100e95ae53016e3f74130b11b96a5","ssdeep":"192:HQZI0X2TZGzfS/42SqK3FgNAVlwif2//6wIp1gD3kZlv2jDQtL:EI0X29/S/3FgN6Oi02p1gj22aL","tlshash":"6d12b5dc377a4becfd90f5fe6b0191a4b81330ffb55c0a58c2ba9d98b5815680e189c6","first_seen":"2025-06-18T19:58:19.020208Z","last_seen":"2026-03-25T15:14:54.578214Z","times_seen":88,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/aster-hero.mp4","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.775Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /aster-hero.mp4 HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1251022\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: \"6979d6d8-1316ce\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 2116\r\ncontent-range: bytes 0-1251021/1251022\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IrL3AzssExUxACddJP9df81gcc%2FBTj5ZTfBzvki30zA4Qba909IvMS5Wgso8Ybq22Ytuyxz1TuLL3cSw4J5BigEoPhiS43NRBBs%2BRYP2nBLY%2FjGMTF52\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46ed80b56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1251022,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"07f0100f3aff615fc0bbdef8b76cd0c9","sha1":"865aba5a0bb87e3d07642e05e18c3558b4deb82e","sha256":"389fce400d00855164dc62d5ec8a687db3096be69370195a2c469d2bd1871e23","sha512":"c42f5e60eef751edaeedb0e9eb3477c7941178072f9ed2c7e0bdcdf3bdb4bf5028e98475ab9320f8d275d0d6f0f8e07ab361c793e02fa036567d4e87d4224dbb","ssdeep":"24576:eMX7Q5QZO88A8yeEfLxx9aAyRdqZ4HdPh4TjkumLz:1ZO88zEv8AyTt9N","tlshash":"792533169bd8b995cc52e57c8dce6381fd94ca3012c443e73cbea5510683e9aeeac35c","first_seen":"2026-01-22T06:56:53.402412Z","last_seen":"2026-03-27T23:55:55.563378Z","times_seen":18,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":191,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/aster-hero.mp4","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /aster-hero.mp4 HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1251022\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: \"6979d6d8-1316ce\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nage: 2116\r\ncontent-range: bytes 0-1251021/1251022\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9%2F63N221RIOr0SYJVPPg0XTDWLPfeE82JGn3WhUo8BTMYbX%2BXA3eAgjJNygu9WRA7h1esqq1w8IfpNDz7OVI3nkW17uBwVYN1PzOMlYoz72%2FDX2yKAfb\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46ed80c56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1251022,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"07f0100f3aff615fc0bbdef8b76cd0c9","sha1":"865aba5a0bb87e3d07642e05e18c3558b4deb82e","sha256":"389fce400d00855164dc62d5ec8a687db3096be69370195a2c469d2bd1871e23","sha512":"c42f5e60eef751edaeedb0e9eb3477c7941178072f9ed2c7e0bdcdf3bdb4bf5028e98475ab9320f8d275d0d6f0f8e07ab361c793e02fa036567d4e87d4224dbb","ssdeep":"24576:eMX7Q5QZO88A8yeEfLxx9aAyRdqZ4HdPh4TjkumLz:1ZO88zEv8AyTt9N","tlshash":"792533169bd8b995cc52e57c8dce6381fd94ca3012c443e73cbea5510683e9aeeac35c","first_seen":"2026-01-22T06:56:53.402412Z","last_seen":"2026-03-27T23:55:55.563378Z","times_seen":18,"resource_available":false,"data":null}},"time_used":228,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":209,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/index_3.html","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://claimwindows-asterdex.com/index_2.html","date":"2026-01-30T06:36:24.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /index_3.html HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/index_2.html\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 2115\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HH55wHp9lP1iEJbrSB6M8dk6a70AoI%2FuHuf2bjOCGFD0W1rJEw8O6%2Bb9CDx3tM23jmEO61Pp7cj%2B3bt3S5qwozUB0li0DUwXeARIkzt%2Bjmj0qgG4Nn7I\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9c5ef46f980f56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":142,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"292f74c92c97c686c723a291030cfa93","sha1":"ff7ce2a278d64bb71b8a15797fd10276ea6f0df2","sha256":"baf0572ea402de47c8c0c44f67fe0b4af40bd7bc06f5733bac13f51bb4ac4d08","sha512":"4f34b0d47baba42b1c93958d291540f76e16fb3f67405fec9d87d0d8d57bf4ae454b63e8462a3b238ff1f6306323f7af84e182781658961d0acac1e55b70d953","ssdeep":"","tlshash":"54c02b22dc04480f3d009fd1cb8af1c4c003dc3ce8315c00b867b544e9ac131c012548","first_seen":"2024-08-19T15:34:07.77924Z","last_seen":"2026-05-22T09:44:23.562648Z","times_seen":432,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/98ed64b04b708b67.css","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /98ed64b04b708b67.css HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-7ba\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IvlrU1gM%2Fmtv%2BsUSTpqU1ucBk%2FHUXuqkKRuAXB1GOSlE%2FCZsCVKf4CWdNSXctKPYD3NWMdo8KduB%2F4QTyCDyx%2FsKKlVBFj%2B5MvLLzfd0Xeml9twNr4AZ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c3fe856bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1978,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1930)","md5":"2dacde7e5da4a5f86464f274076bb35e","sha1":"bf6c31d4125d2d320bca19f230d2018129b531df","sha256":"5133bb14ca0bceb66f9b6b1add2dab99f9c8590166682eb5f9d506f1a52873a5","sha512":"91b6ad60120481a6ab75752f82d218f627aa90b61531b5d03774f3cf8f2e28b482e8a50c675d9015dbd1d90e86a9ff35c57b3ec65b9fd1dc4b29bf85caeb892c","ssdeep":"","tlshash":"86417f48f487a1753c2b64069b58a13cc0607841aea64aef7d082956d7d3be77cf4b54","first_seen":"2025-10-09T03:32:58.055433Z","last_seen":"2026-05-11T12:52:48.189858Z","times_seen":87,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/orion.js","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /orion.js HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-1a5d5\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d2j3OkzxHFoaJHsLIqJtgK%2BQHIgPz58Yn3hEHm1si1G28X02qOpiYYP0FF0GyTFfFGvEKMBk1tlYfBIDAP7%2F8ixOQ75aZimWay%2BzYKPsfAizSktHmRLz\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c4fec56bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":107989,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"8256cac1bd4bdcddf5d245ee81fcc52e","sha1":"9a6dedf90a6703f3b2f4cdaecff3226bf689d201","sha256":"ab8c63dd12dd03136ccd032e5b3884c3d6fe72a9a36d8bca6bf99434332dd3bc","sha512":"2a46c67ddb2cb0c7680f68bd4d0e622ead7cc38a0c8034cade6f7bbde1a5c7c4bdce17e489646a28af1126b87c1f525d723f2592bacb4fff47001ab15727965c","ssdeep":"1536:9kaRasaz1dd527mjiIs113usHqBYLsVFX5saB:9kaRcz732aiIsVqBMs5saB","tlshash":"37b340d6594bd0d58e1a10edd077ec09e0681aa3cdacf183ba2cded2755df22884763b","first_seen":"2026-01-07T13:23:26.426463Z","last_seen":"2026-02-14T09:07:38.758383Z","times_seen":45,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"Nextron YARA rules","description":"Public Nextron YARA rules","scan_date":"2026-01-30","alert":"PHP webshell using some kind of eval with encoded blob to decode","trigger":"claimwindows-asterdex.com/orion.js","verdict":"malware","severity":"medium","comment":"","link":"https://github.com/Neo23x0/signature-base","meta":{"author":"Arnim Rupp","date":"2021/02/07","description":"PHP webshell using some kind of eval with encoded blob to decode","hash":"1d4b374d284c12db881ba42ee63ebce2759e0b14","license":"Detection Rule License 1.1 https://github.com/Neo23x0/signature-base/blob/master/LICENSE","rule":"webshell_php_encoded_big","score":"50"}}],"urlquery":null}},{"url":{"schema":"https","addr":"claimwindows-asterdex.com/search_symbol_m.webp","fqdn":"claimwindows-asterdex.com","domain":"claimwindows-asterdex.com","tld":"com"},"ip":{"addr":"172.67.134.61","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://claimwindows-asterdex.com/","date":"2026-01-30T06:36:24.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"claimwindows-asterdex.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 08:31:30 GMT","end":"Tue, 28 Apr 2026 09:30:07 GMT"},"fingerprint":{"sha1":"98:EF:AA:FD:57:02:10:59:18:DB:07:57:58:5F:46:08:10:E3:CF:CA","sha256":"3E:91:C8:2B:0C:C3:D7:C1:4B:F4:43:4D:11:08:92:14:A2:21:2D:7C:FF:08:74:03:DE:37:21:FA:75:7A:31:65"}}},"request":{"raw":"GET /search_symbol_m.webp HTTP/1.1\r\nHost: claimwindows-asterdex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://claimwindows-asterdex.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 30 Jan 2026 06:36:24 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 09:28:56 GMT\r\netag: W/\"6979d6d8-d4ac\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 2116\r\npriority: u=4,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eB4CsoBCsECblNOmD1LKvUJJqvws8vFdTeUHdfAJpI%2BwU6QUkBDO5rF%2Fwz0m7JoI4Q2n%2FAXz7sWaqxrMiAv9%2FOBFEzcrlYNOpn%2BlXywYTPloK3xIyD9X\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9c5ef46c6ff356bb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54444,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"f393e968753d46fa8782544742a2c354","sha1":"9f074ddb052b65e20e6e1f3602af08f65b2efe81","sha256":"6db9e11561508262d921c57a3ad7896e780337b0cf4158f244400057a57235e6","sha512":"4517ba441823b195ab30b69b699761781efd46a59b789d3b4c56e2b782d8dfe83ad433b6ebe01ecfb9a50ac334b8d6e58a50af33e1f179190d164594616e3ebf","ssdeep":"1536:1wbE9A0mFz16kE9A0mFz1uHxn/FsCTeGNTML7/2310rW:wE9AXlE9AXU/bTeGNAe3mC","tlshash":"d833f2dab4093299e879dd3bf946c162cbc5b9dc88d3874424a877081b7c8d5346df72","first_seen":"2025-09-11T10:22:24.744835Z","last_seen":"2026-05-15T05:55:48.971143Z","times_seen":82,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}